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(54) Digital data recording device, digital data memory device, ar,d digital data utilizing device 
that produce problem reports 



(57) A digital data utilizing device connects with a 
digital data intelligent memory device, receives digital 
data from the digital data intelligent memory device, and 
utilizes the received digital data. When the processing 
from the connection with the digital data intelligent 
memory device to the utilization of the digital data is 



aborted at some point and the utilization of the digital 
data becomes impossible, the digital data utilizing 
device produces a problem report notifying the user of a 
reason why the digital data cannot be utilized, based on 
at which point the processing is aborted. 
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Description 

[0001] This application is based on applications 
Nos. H11 -201213 and 2000-131169 filed in Japan, the 
contents of which are hereby incorporated by reference. 

BACKGROUND OF THE INVENTION 

Field of the Invention 

[0002] The present invention relates to devices for 
recording and utilizing digital data, and in particular 
relates to techniques for preventing unauthorized use of 
digital data and increasing user friendliness. 

n ^scriptinn of the R elated Art 



[0003] The digitization of infornnation is increasing 
in recent years. Since digitized information (hereinafter 
"digital content") is not only relatively easy to use but 
also will not deteriorate with time, infornnation such as 
audio and image data is becoming more and more digi- 
tized. 

[0004] However, if digital content is copied, the copy 
will end up being precisely identical to the original. This 
provokes unauthorized acts such as illegal copying or 
tampering of copyrighted information. 
[0005] To discourage unauthorized use of digital 
content a method is devised whereby the digital content 
is accompanied by management information that shows 
conditions for the use of the digital content, and the use 
of the digital content is prohibited if any of these condi- 
tions is not satisfied. 

[0006] Also, to prevent an invalid device from using 
the digital content, there is a method whereby two 
devices authenticate each other (i.e. mutual authentica- 
tion) before the use of the digital content, and any unau- 
thenticated device is prohibited from using the digital 
content. 

[0007] There is further a method whereby storage 
mediums such as memory cards are respectively given 
unique numbers (hereinafter, "card IDs") so that each 
storage medium stores only digital content encrypted 
using its own card ID. Acconiing to this method, even 
when digital content which has been encrypted and 
stored on a memory card is copied onto another mem- 
ory card, the copy of the encrypted digital content can- 
not be decrypted with a card ID of the latter memory 
card, so that the unauthorized copying will end in failure. 
[0008] However, when there are many conditions 
which need to be satisfied to use digital content or there 
are many processes which need to be performed before 
using the digital content, a user who attempts to use the 
digital content may not be able to do so because of the 
occurrence of an error in the processes or a failure to 
meet any of the conditions (hereinafter, such errors and 
failures are collectively called "problems") When this 
happens, the user has difficulty in finding out why the 



digital content cannot be used, and therefore cannot 
deal with the problem appropriately. 

SUMMARY OF THE INVENTION 

5 

[0009] In view of the stated problem, the present 
invention aims to provide a digital data recording device, 
digital data memory device, and digital data utilizing 
device that enable a user to react appropriately when 
10 the user cannot use digital content due to the occur- 
rence of a problem, and computer- readable storage 
mediums storing digital data recording and utilizing pro- 
grams. 

[0010] To achieve the above object, the invention 
15 provides a digital data utilizing device for receiving dig- 
ital data from a digital data intelligent memory device 
and utilizing the digital data, including: a connecting unit 
for connecting the digital data utilizing device with the 
digital data intelligent memory device; a receiving unit 
20 for receiving the digital data from the digital data intelli- 
gent memory device connected with the digital data uti- 
lizing device; a utilizing unit for utilizing the digital data 
received by the receiving unit; and a problem reporting 
unit for reporting to a user, when processing from the 
25 connection by the connecting unit to the utilization by 
the utilizing unit is aborted at some point and the utiliza- 
tion of the digital data becomes impossible, a reason 
why the digital data cannot be utilized, based on at 
which point the processing is aborted. 
30 [0011] With this construction, the digital data utiliz- 
ing device reports to the user the reason why the digital 
data cannot be used, based on the point at which the 
processing is aborted. 

[0012] Accordingly, when the digital data cannot be 
35 used due to the occun-ence of some problem, the user 
can readily identify and appropriately handle the prob- 
lem. 

[001 3] Here, the digital data utilizing device may fur- 
ther include a mutual authenticating unit for authenticat- 
40 ing, belore the reception of the digital data by the 
receiving unit, the digital data intelligent memory device 
through an exchange of data with the digital data intelli- 
gent memory device, in mutual authentication between 
the digital data utilizing device and the digital data intet- 
45 ligent memory device, wherein the digital data intelligent 
memory device sends the digital data when the digital 
data intelligent memory device has succeeded in 
authenticating the digital data utilizing device, and 
sends authentication failure information when the digital 
50 data intelligent memory device has failed to authenti- 
cate the digital data utilizing device, wherein the receiv- 
ing unit receives the digital data when the mutual 
authenticating unit has succeeded in authenticating the 
digital data intelligent memory device, and wherein the 
55 problem reporting unit includes: an authentication fail- 
ure information receiving unit for receiving the authenti- 
cation failure infornnation from the digital data intelligent 
memory device; a reason determining unit for determin- 
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ing that the digital data cannot be utilized because the 
digital data intelligent memory device is invalid, when 
the mutual authenticating unit has failed to authenticate 
the digital data intelligent memory device, and deiermm- 
mg that the digital data cannot be utilized because the 
digital data utilizing device is invalid, when the authenti- 
cation failure information receiving unit receives the 
authentication failure information; and a reason notify- 
ing unit for notifying the user of the reason determined 
by the reason determining unit. 

[0014] With this construction, when the mutual 
authentication between the digital data utilizing device 
and the digital data intelligent memory device has failed, 
the user is notified which device is invalid. 
[001 5] Here, the problem reporting unit may further 
include a timeout judging unit for judging whether data 
which the digital data utilizing device should receive 
from the digital data intelligent memory device is 
received within a predetermined time period, wherein 
the reason determining unit detemnines that the digital 
data cannot be utilized because of a failure of the digital 
data intelligent memory device, when the timeout judg- 
ing unit judges that the data was not received within the 
predetermined time period. 

[0016] With this construction, when the data neces- 
sary for the authentication is not received within the pre- 
determined time period, the user is notified that a failure 
has occurred in the digital data intelligent memory 
device. 

[0017] Here, the digital data received by the receiv- 
ing unit may include digital content which is subjected to 
utilization and management infonmation which shows at 
least one condition to be met for utilizing the digital con- 
tent, the management information having been 
encrypted, wherein the utilizing unit includes: a man- 
agement infonnation decrypting unit for decrypting the 
encrypted management information received by the 
receiving unit, to obtain the management Information; a 
decryption judging unit forjudging whether the manage- 
ment information decrypting unit has succeeded in 
decrypting the encrypted management information; and 
a content utilizing unit for utilizing the digital content 
received by the receiving unit, if the decryption judging 
unit judges that the management information decrypting 
unit has succeeded in decrypting the encrypted man- 
agement information, and wherein the problem report- 
ing unit includes: a reason determining unit for 
determining that the digital data cannot be utilized 
because the management infonmation has been tam- 
pered with, when the decryption judging unit judges that 
the management information decrypting unit has failed 
to decrypt the encrypted management infonnation: and 
a reason notifying unit for notifying the user of the rea- 
son determined by the reason determining unit. 
[0018] With this construction, the management 
information has been encrypted to prevent unauthor- 
ized tamperina while it is being sent from the digital data 
intelligent memory device to the digital data utilizing 



device. If the decryption of the encrypted management 
information has failed, the user is notified that the man- 
agement information itself has been tampered with. 
[0019] Here, the management information may 
5 have been encrypted in such a manner that the 
encrypted management infonnation can be decrypted 
based on a device ID uniquely given to the digital data 
intelligent memory aevice. wherein the digital data utiliz- 
ing device further includes a device ID acquiring unit for 
TO acquiring the device ID from the digital data intelligent 
memory device conneaed with the digital data utilizing 
device, wherein the management information decrypt- 
ing unit decrypts the encrypted management infonna- 
tion received by the receiving unit, oased on the device 
15 ID acquired by the device ID acquiring unit, and wherein 
the reason determining unit determines that the digital 
data cannot be utilized because the management infor- 
mation has been tampered with or because the 
encrypted management information has been illegally 
20 copied into the digital data intelligent memory device 
from another digital data intelligent memory device, 
when the decryption judging unit judges that the man- 
agement information decrypting unit has failed to 
decrypt the encrypted management infonnation. 
25 [0020] With this construction, the management 
information has been encrypted so that the encrypted 
management information can be decrypted based on 
the device ID of the digital data intelligent memory 
device, to prevent unauthorized copying of the 
30 encrypted management infonnation. If the decryption of 
the encrypted management infonnation has failed, the 
user is notified that the management information itself 
has been tampered with or that the encrypted manage- 
ment information has been illegally copied to the digital 
35 data intelligent memory device from another digital data 
intelligent memory device. 

[0021] Here, the utilizing unit may further include a 
condition judging unit tor judging, when the decryption 
judging unit judges that the management information 
40 decrypting unit has succeeded in decrypting the 
encrypted management infonnation, whether the utili- 
zation of the digital content is permitted or prohibited, by 
checking whether the conditions shown in the manage- 
ment information obtained by the management infomna- 
45 tion decrypting unit are met, wherein the content 
utilizing unit utilizes the digital content if the condition 
judging unit judges that the utilization of the digital con- 
tent is permitted, and wherein the reason determining 
unit determines that the digital data cannot be utilized 
50 because any of the conditions for utilizing the digital 
content is not met, when the condition judging unit 
judges that the utilization of the digital content is prohib- 
ited. 

[0022] With this construction, when the use of the 
55 digital content is prohibited because any of the condi- 
tions shown in the management information is not met, 
the user is notified that the condition for the use of the 
digital content is not met. 
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[0023] Here, the digital content received by the 
receiving unit may have been coded in a predetermineo 
data format and be compatible only with a predeter- 
mined service, wherein the conditions shown .n the 
management information includes a service type limita- 
tion specifying the service compatible with the digital 
content, wherein ihe utilizing unit further includes a 
service information holding unit for holding service infor- 
mation showing at least one service which the digital 
data utilizing device is compatible witn. wherein the con- 
dition judging unit judges that the utilization of the digital 
content is prohibited, if the service specified by the serv- 
ice tyoe limitation does not match any of the services 
shown by the service information, and wherein the rea- 
son determining unit detemiines that the digital data 
cannot be utilized because the digital data utilizing 
device does not provide the service compatible with the 
digital content, when the condition judging unit judges 
that the utilization of the digital content is prohibited. 
[0024] With this construction, wnen the use of the 
digital content is prohibited because the service type 
limitation is not satisfied, the user is notifiec that the dig- 
ital data utilizing device does not provide the service 
compatible with the digital content. 
[0025] Here, the conditions shown in the manage- 
ment information may include a hmitation on a number 
of times the digital content can be utilized, wherein the 
condition judging unit judges that the utilization of the 
digital content is prohibited, if the number is smaller 
than 1 and wherein the reason oetermining unit deter- 
mines that the digital data cannot be utilized because 
the number of times the digital content can be utilized is 
0, when the condition judging unit judges that the utiliza- 
tion of the digital content is prohibited. 
[0026] With this construction, when the use of the 
digital content is prohibited because the number of 
times the digital content can be used is 0, the user is 
notified that no further use of the digital content is per- 
mitted. 

[0027] Here, the conditions shown in the manage- 
ment information may include a time limit for utilizing the 
digital content, wherein the utilizing unit further includes 
a clocking unit for showing current date and time, 
wherein the condition judging unit judges that the utiliza- 
tion of the digital content is prohibited, if the current oate 
and time exceed the time limit, and wherein the reason 
determining unit determines that the digital data cannot 
be utilized because of expiration of the time limit, when 
the condition judging unit judges that the utilization of 
the digital content is prohibited. 
[0028] With this construction, when the use of the 
digital content is prohibited because of the expiration of 
the time limit, the user is notified that the time limit for 
the use of the digital content expired. 
[0029] Here, the conditions shown in the manage- 
ment information may include duplication infomnation 
showing whether there is a right to duplicate the digital 
content, wherein the utilizing unit further includes an 



ooeration type judging unit forjudging whether the user 
instructs the duplication of the digital content, wherein 
the condition judging unit judges that the duplication of 
the digital content is prohibited, if the user instructs the 
- duplication of the digital content but the duplication 
infonnation shows there is no right to duplicate the dig- 
ital content, and wherein the reason determining unit 
determines that the digital data cannot be utilized 
because there is no right to duplicate the digital content, 
,0 when the condition judging unit judges that the duplica- 
tion of the digital content is prohibited. 
[0030] With this construction, when the duplication 
of the digital content is prohibited because there is no 
duplication right, the user is notified that there is no right 
15 to duplicate the digital content. 

[0031] Here, the conditions shown in the manage- 
ment infonnation may further include a limitation on a 
number of times the digital content can be duplicated, 
wherein the condition judging unit judges that the dupli- 
70 cation of the digital content is prohibited, if the user 
instructs the duplication of the digital content and the 
duplication infomfiation shows there is a right to dupli- 
cate the digital content but if the number of times the 
digital content can be duplicated is smaller than 1 , and 
35 wherein the reason detemnining unit detennines that the 
digital data cannot be utilized because the number of 
times the digital content can be duplicated is 0, when 
the condition judging unit judges that the duplication of 
the digital content is prohibited. 
30 [0032] With this construction, when the duplication 
of the digital content is prohibited because the number 
of times the digital content can be duplicated is 0. the 
user is notified that no further duplication of the digital 
content is permitted. 
35 [0033] Here, the conditions shown in the manage- 
ment information may include an area limitation specify- 
ing areas where the digital content can be utilized, 
wherein the utilizing unit further includes a device area 
infonnation holding unit for holding device area informa- 
40 tion showing an area which relates to the digital data uti- 
lizing device, wherein the condition judging unit judges 
that the utilization of the digital content is prohibited, if 
the areas specified by the area limitation do not contain 
the area shown by the device area information, and 
45 Wherein the reason detemnining unit detennines that the 
digital data cannot be utilized because the digital data 
utilizing device does not comply with the area limitation 
of the digital content, when the condition judging unit 
judges mat the utilization of the digital content is prohib- 
50 ited. 

[0034] With this construction, when the use ot tne 
digital content is prohibited because the area limitation 
is not met, the user is notified that the digital data utiliz- 
ing device does not satisfy the area limitation of the dig- 

55 ital content 

[0035] Here, the reason notifying unit may discon- 
nect the digital data intelligent memory device from the 
digital data utilizing device by automatically ejecting the 
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digital data intelligent memory device fronfi the aigital 
data utilizing device if the decryption judging unitjuages 
that the management infonnaticn decrypting unit has 
tailed to decrypt the encrypiea management imonna- 
tion and not disconnect the digital data intelligent mem- 
ory 'aevice from the digital data utilizing device if tne 
condition judging unit judges that the utilization of the 
digital content is prohibited. 

[00361 With this construction, when the decryption 
of the encrypted management information has failed, 
the digital data intelligent memory device is automati- 
cally ejected from the digital data utilizing device. 
[00371 Since the failure to decrypt the encrypted 
management infomiation means the digital data intelli- 
gent memory device itself is unusable, ejecting the 
memory device is more convenient for the user who has 
no choice but to replace it with another memory device. 
[00381 Here, the problem reporting unit may report 
the reason to the user through one of notification means 
that include a display capable of displaying characters 
and symbols, a light-emitting device capable of lighting 
up and flashing, a speaker capable of outputting voices 
and melodies, a beeper, a vibrator, and a device capa- 
ble of initiating a mechanical operation that involves the 
digital data intelligent memory device, or through any 
combination of at least two of the notification means. 
[00391 With this construction, the various notifica- 
tion methods can be employed to notify the user of the 
reason why the digital data cannot be used. 
[0040] The invention also provides a digital aata 
intelligent memory device for sending digital data to a 
digital data utilizing device that utilizes the digital data, 
including: a storing unit for storing the digital data; a 
connecting unit for connecting the digital data intelligent 
memory device with the digital data utilizing device; a 
mutual authenticating unit tor authenticating the digital 
data utilizing device through an exchange of data with 
the digital data utilizing device, in mutual authentication 
between the digital data intelligent memory device and 
the digital data utilizing device, a digital data sending 
unit for sending the digital data to the digital data unliz- 
ing device when the mutual authenticating unit has suc- 
ceeded in authenticating the digital data utilizing device, 
wherein the digital data is received by the digital data 
utilizing device when the digital data utilizing device has 
succeeded in authenticating the digital data intelligent 
memory device; and an authentication failure infomna- 
tion sending unit for sending authentication failure infor- 
mation to the digital data utilizing device, when the 
mutual authenticating unit has failed to authenticate the 
digital data utilizing device. 

[0041] With this construction, when the oigital data 
intelligent memory device has failed to authenticate the 
digital data utilizing device, the digital data Intelligent 
memory device sends the authentication failure infor- 
mation to the digital data utilizing device, with it being 
possible to notify the user of the invalidity of the digital 
data utilizing device through the notification means of 



the digital data utilizing device. 
[00421 The invention also provides a digital data 
intelligent memory device for receiving digital data from 
a digital data recorciing device and storing the digital 
5 data including: a Connecting unit for connecting the 
digital data intelligent memory device with the digital 
data recoreling device; a mutual authenticating unit for 
authenticating, in mutual authentication between the 
digital data intelligent memory device and the digital 
w data recording device, the digital data recording device 
through an exchange of data with the digital data 
recording device, wherein the digital data recording 
device sends the digital data to the digital data intelli- 
gent memory device when the digital data recording 
IS device has succeeded in authenticating the digital data 
intelligent memory device; a receiving unit for receiving 
the digital data from the digital data recording device, 
when the mutual authenticating unit has succeeded in 
authenticating the digital data recording device; a stor- 
20 ing unit for storing the digital data received by the 
receiving unit: and an authentication failure information 
sending unit for sending authentication failure infomna- 
tion to the digital data recording device, when the 
mutual authenticating unit has failed to authenticate the 
25 digital data recording device. 

[00431 With this Construction, when the digital data 
intelligent memory device has failed to authenticate the 
digital data recording device, the digital data intelligent 
memory device sends the authentication failure infor- 
30 mation to the digital data recording device, with it being 
possible to notify the user of the invalidity of the digital 
data recording device through the notification means of 
the digital data recording device. 
[00441 The invention also provides a digital data 
35 recording device for sending digital data to a digital data 
inteingent memory device to record the digital data into 
the digital data intelligent memory device, including: a 
connecting unit for connecting the digital data recording 
device with the digital data intelligent memory device; 
40 an acquiring unit for acquiring the digital data; a sending 
unit for sending the acquired digital data to the digital 
data intelligent memory device connected with the dig- 
ital data recording device; and a problem reporting unit 
for reporting to a user, when processing from the con- 
45 nection by the connecting unit to the sending by the 
sending unit is aborted at some point and the sending of 
the digital data becomes impossible, a reason why the 
digital data cannot be sent, based on at which point the 
processing is aborted. 
50 [0045] With this construction, the digital data 
recording device reports to the user the reason why the 
digital data cannot be recorded, based on the point at 
which the processing is aborted. 
[0046] Accordingly when the digital data cannot be 
55 recorded due to the occun-ence of some problem, the 
user can readily identify and appropriately handle the 
problem. 

[0047] Here, the digital data recording device may 
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further include a mutual authenticating unit for authenti- 
cating before the sending ot the digital data oy ihe 
sending unit, the digital data intelligent nnemory device 
through an exchange of data with the digital data inteili- 
gent memory device, in mutual authentication between 
the digital data recording device and the digital aata 
intelligent memory device, wherein the sending jnit 
sends the digital data when the mutual authenticaung 
unit has succeeded in authenticating the digital aata 
intelligent memory device, wherein the digital data intel- 
ligent memory device receives the digital data when ine 
digital data intelligent memory device has succeedea m 
authenticating the digital data recording device, and 
sends authentication failure information when the digital 
data intelligent memory device has failed to authenti- 
cate the digital data recording device, and wherein the 
problem reporting unit includes: an authentication rail- 
ure information receiving unit for receiving the authenti- 
cation failure information from the digital data intelligent 
memory device: a reason detemnining unit for determin- 
ing that the digital data cannot be sent because the aig- 
itafdata intelligent memory device is invalid, when the 
mutual authenticating unit has failed to authenticate the 
digital data intelligent memory device, and detennining 
that the digital data cannot be sent because the digital 
data recording device is invalid, when the authentication 
failure information receiving unit receives the authenti- 
cation failure information; and a reason notifying unit for 
notifying the user of the reason determined by the rea- 
son determining unit. 

[0048] With this construction, when the mutual 
authentication between the digital data recording device 
and the digital data intelligent memory device has failed, 
the user is notified which device is invalid. 
[0049] Here, the problem reporting unit may report 
the reason to the user through one of notification means 
that include a display capable of displaying characters 
and symools, a light-emitting device capable of lighting 
up and flashing, a speaker capable of outputting voices 
and melodies, a beeper, a vibrator, and a device capa- 
ble of initiating a mechanical operation that involves the 
digital data intelligent memory device, or through any 
combination of at least two of the notification means. 
[0050] With this constmction, the various notifica- 
tion methods can be employed to notify the user of the 
reason why the digital data cannot be recorded. 
[0051] The invention also provides a computer- 
readable storage medium storing a digital data utilizing 
program, used in a digital data utilizing device, for 
receiving digital data from a digital data intelligent mem- 
ory device and utilizing the digital data, the program 
including: a connecting step for connecting the digital 
data utilizing device with the digital data intelligent 
memory device: a receiving step for receiving the digital 
data from the digital data intelligent memory device; a 
utilizing step for utilizing the digital data received in the 
receiving step; and a problem reporting step for report- 
ing to a user, when processing from the connection m 



the connecting step to the utilization in the utilizing step 
is aborted at some point and the utilization of the digital 
data becomes impossible, a reason wny the digital data 
cannot be utiiizea, based on at which point the process- 
5 ing is aborted. 

[0052] With this construction, the reason why the 
digital data cannot be used is reported to the user 
based on the point at which the processing is aborted. 
[0053] Accordingly, when the digital data cannot be 
10 used due to the occun-ence of some problem, the user 
can readily identify and appropriately handle the prob- 
lem. 

[0054] The invention also provides a computer- 
readable storage medium storing a digital data record- 
15 ing program, used in a digital data recording device, for 
sending digital data to a digital data intelligent memory 
device to reconj the digital data into the digital data 
intelligent memory device, the program including: a con- 
necting step for connecting the digital data recording 
20 device with the digital data intelligent memory device: 
an acquiring step for acquiring the digital data; a send- 
ing step for sending the acquired digital data to the dig- 
ital data intelligent memory device: and a problem 
reporting step for reporting to a user, when processing 
05 from the connection in the connecting step to the send- 
ing in the sending step is aborted at some point and the 
sending of the digital data becomes impossible, a rea- 
son why the digital data cannot be sent, based on at 
which point the processing is aborted. 
30 [0055] With this construction, the reason why the 
digital data cannot be recorded is reported to the user 
based on the point at which the processing is aborted. 
[0056] Accordingly, when the digital data cannot be 
recorded due to the occun-ence of some problem, the 
35 user can readily identify and appropriately deal with the 
problem. 



BRIEF DESCRIPTION OF THE DRAWINGS 

40 [0057] These and other objects, advantages and 
features of the invention will become apparent from the 
following description thereof taken in conjunction with 
the accompanying drawings that illustrate a specific 
embodiment of the invention. In the drawings: 

45 

Fig. 1 shows the constructions of a recorder 100, a 

memory card 120, and a player 1 40 according to an 

embodiment of the invention; 

Fig. 2 shows the detailed constructions of an 
50 authenticating unit 102 in the recorder 100 and an 
authenticating unit 123 in the memory card 120; 
Fig. 3 shows the detailed constructions of an 
authenticating unit 142 in the player 140 and the 
authenticating unit 123 in the memory card 120; 
55 Fig. 4 IS a flowchart showing an example operation 
of mutual authentication between the recorder 100 
and the memory card 1 20; 

Fig. 5 is a flowchart showing an example operation 
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of recording digital content from the recorder 100 
onto the mennory card 120; 
Fig. 6 is a flowchart showing an exannple operation 
of mutual authentication between the player 140 
and the memory card 320; 
Fig. 7 is a flowchart showing an example operation 
of reading digital content from the memory card 120 
and utilizing ii in the player 140; 
Fig. 8 shows an example fomnat for digital data 
made up of management information and digital 
content; 

Fig. 9 is a flowchart showing an example operation 
of the player 140 in checking a service type limita- 
tion; 

Fig. 10 is a flowchart showing an example opera- 
tion of the player 140 in checking a limit on the 
number of types the digital content can be used; 
Rg. 11 is a flowchart showing an example opera- 
tion of the player 140 in checking a time limit for the 
use of the digital content; 

Fig. 12 is a flowchart showing an example opera- 
tion of the player 1 40 in checking a duplication sta- 
tus of the digital content: 

Fig. 13 is a flowchart showing an example opera- 
tion of the player 140 in checking a limitation on 
areas where the digital content can be used; and 
Rg.14 shows the hardware construction of the 
player 1 40. 

DESCRIPTION OF THE PREFERRED EMBODI- 
MENT(S) 

1 Overview 

[0058] The present invention is embodied as a 
device that, when digital content cannot be used due to 
the occurrence of some problem, produces a problem 
report which notifies the user of the cause of the prob- 
lem by means of display and the like, thereby helping 
the user to react appropriately. 

P Genera l nnnstructions 



[0059] Fig. 1 shows the constructions of a recorder 
100, a memory card 120, and a player 1 40 according to 
the embodiment of the invention. Note that it is also 
common to integrate the recorder 100 and the player 
140 as a single unit, or to remove write functions from 
the memory card 120 to render it a reproduce-only 
product with store and reproduce functions only. 

1 Construr tinn Recorder IQO 

[0060] The recorder 100 acquires digital content, 
such as music information, and management infomna- 
tion for the digital content from an external source, proc- 
esses the digital content and the management 
information by encryption or the like for protection 



against unauthorized acts, and sends them to the mem- 
ory card 1 20. The recorder 1 00 is roughly made up of a 
card ID receiving unit 101, an authenticating unit 102, 
an authentication problem reporting unit 103. a man- 
5 agemeni information acquiring unit 1 04. a management 
information encp/pting unit 105, an encrypted manage- 
ment information sending unit 106, a content acquinng 
unit 107, a content encrypting unit 108, and an 
encrypted content sending unit 109. 
10 [0061] The card ID receiving unit 101 receives a 
card ID, such as an 3-byte card ID 
-0123456789ABCDEFH-. from the memory card 120. 
[0062] The authenticating unit 102 performs 
authentication to verify the authenticity of the memory 
15 card 120, througn an exchange of data such as random 
numbers with an authenticating unit 123 in the memory 
card 1 20. 

[0063] The authentication problem reporting unit 

103 displays a problem report on a display unit such as 
20 an LCD (Liquid Crystal Display) equipped in the 

recorder 100, when the mutual authentication between 
the recorder 100 and the memory card 120 has failed. 
The authentication problem reporting unit 103 will be 
explained in detail later. 
25 [0064] The management infomnation acquiring unit 

104 acquires management infomnation, such as 8-byte 
management information "B38A800715CA8100H-. 
[0065] The management information encrypting 
unit 105 encrypts the acquired management infonma- 

30 tion by a predetennined algorithm using the card ID 
received by the card ID receiving unit 101 as an encryp- 
tion key so as to protect the management information 
against' tampering. The predetermined algorithm 
referred to here is a cipher, such as DES (Data Encryp- 
35 tion Standard), that is specified by the encryption key. 
[0066] The encrypted management information 
sending unit 106 sends the encrypted management 
information generated by the management information 
encrypting unit 105, to the memory card 120. 
40 [0067] The content acquiring unit 1 07 acquires dig- 
ital content. 

[0068] The content encrypting unit 1 08 encrypts the 
acquired digital content by a predetermined block 
cipher. In this embodiment, after the digital content is 
45 divided into 8-byte blocks, each of the blocks is 
encrypted, and the encrypted blocks are concatenated 
to form encrypted digital content. 
[0069] The encrypted content sending unit 109 
sends the encrypted digital content generated by the 
50 content encrypting unit 108. to the memory card 120. 



p,2. Constr t'ct'*^" f^f the Memory Card12Q 

[0070] The memory card 1 20 is an intelligent mem- 
55 ory device equipoed with a large-capacity semiconduc- 
tor memory for storing encrypted digital content and 
encrypted management information, and a control cir- 
cuit for the semiconductor memory. The memory card 
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120 is roughly made up of a carti ID holding unit 121 , a 
card ID sending unit '22, the authenticating unit 123: an 
encrypted management information receiving unit 124, 
an encrypted management intornnation storing unit 125. 
an encrypted management information sending unit 
126 an encrypted content receiving unit 127, an 
enc^pted content storing unit 128, and an encrypted 
content sending unit 1 29. 

[00711 The card \D holding unit 1 21 holds the card 
ID such as the S-byte card ID -0123456789ABCDEFH". 
which has been uniquely given to the memory card 120. 
[0072] The card ID sending unit 1 22 sends the card 
ID held in the card ID holding unit 121 , to the recorder 
100 and the player 140. 

[0073] The authenticating unit 123 performs 
authentication to verify the authenticity of the recorder 
100 through an exchange of data such as random num- 
ber^ with the authenticating unit 102 in the recorder 
100 The authenticating unit 123 also performs authen- 
tication to verify the authenticity of the player 140, 
through an exchange of data such as random numbers 
with an authenticating unit 142 in the player 140. 
[00741 The encrypted management information 
receiving unit 124 receives the encrypted management 
information from the recorder 100. The encrypted man- 
agement information receiving unit 124 also receives 
encrypted management information from the player 
140. 

[0075] The encrypted management information 
storing unit 125 stores the encrypted management 
information received by the encrypted management 
information receiving unit 124. in its inside nonvolatile 

nrtemory, 

[0076] The encrypted management information 
sending unit 126 sends the encrypted management 
information storeo in the encrypted management infor- 
mation storing unit 125. to the player 140. 
[0077] The encrypted content receiving unit 127 
receives the encrypted digital content from the recorder 

100. . 
[0078] The encrypted content storing unit 128 
stores the encrypted digital content received by the 
encrypted content receiving unit 127, in its inside non- 
volatile memory. 

[0079] The encrypted content sending unit 129 
sends the encrypted digital content stored in the 
encrypted content storing unit 128, to the player 140. 

9 ^ r.ongtruction ^^thA Piaver 140 



[0080] The player 1 40 reads digital content such as 
music information and management information from 
the memory card 120 in their encrypted state, and uti- 
lizes these data by means of reproduction or the like. 
The player 140 is mainly made up of a card ID receiving 
unit 141 the authenticating unit 142, an authentication 
problem' reporting unit 143, an encrypted management 
information receiving unit 144. a management infonna- 



tion decrypting unit i45, a management infomnation uil- 
lizino unit 146, a management infonnation encrypting 
unit "l 47, an encrypted management information send- 
ing unit 148. a management information problem report- 
5 ing unit 1 49, an encrypted content receiving unit 1 50, a 
content decrypting unit 151 , and a content utilizing unit 
152. 

[0081] The card ID receiving unit 141 receives the 
card ID, such as the 8-byte card ID 
10 -0123456789ABCDEFH% from the memory card 120. 
[0082] The authenticating unit 142 perfomns 
authentication to verify the authenticity of the memory 
card 120. through an exchange of data such as random 
numbers with the authenticating unit 123 in the memory 
15 card 120. 

[0083] The authentication problem reporting unit 
143 displays a problem repor. on a display unit such as 
an LCD equipped in the player 140, when the mutual 
authentication between the player 140 and the memory 
20 card 120 has failed. The details of the authentication 
problem reporting unit 143 will be explained later 
[0084] The encrypted management information 
receiving unit 144 receives the encrypted management 
information from the memory card 120. 
25 [0085] The management information decrypting 
unit 145 decrypts the encrypted management informa- 
tion received by the encrypted management infomnation 
receiving unit 144, by a predetemnined algorithm using 
the card ID received by the card ID receiving untt141 as 
30 a decryption key The predetermined algorithm here is a 
cipher, such as DES, that is specified by the decryption 
key and is the inverse of the encryption by the manage- 
ment information encrypting unit 105 in the recorder 
1 00. 

35 [0086] The management information utilizing unit 
146 analyzes the management infomnation generated 
by the management infonnation decrypting unit 145. to 
control the use of the digital content in accordance with 
conditions set in the management information. If the 
40 management information contains infomnation which 
needs to be updated, such as information on the 
number of times the digital content can be used, the 
management infomnation utilizing unit 146 updates the 
management information accordingly and passes the 
45 updated management information to the management 
information encrypting unit 147. For instance,- if the 
number of times the digital content can be used is lim- 
ited to ten, the management infomnation utilizing unit 
146 decrements the number by 1 each time the digital 
50 content is used, and prohibits further use once the 
number reaches 0. Also, if the time limit for the use of 
the digital content is set at three weeks, the manage- 
ment infonnation utilizing unit 146 prohibits further use 
once the three weeks have passed. 
55 [0087] The management information encrypting 
unit 147 encrypts the updated management information 
by a predetermined algorithm using the card ID 
received by the card ID receiving unit 1 41 as an encryp- 
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tion key. so as to protect the management information 
against tamoering. The predeternined algorithm here .s 
a cipher, such as DES. that is specrfied by the encryp- 
tion key. 

ro088] The encrypted management information : 
sending unit 148 sends the encrypted management 
information generated by the management information 
encrvpting unit i ^7, to the memory card 1 20. 
[0089] The management information problem 
reoorting unit 149 displays a problem report on the dis- 
play unit equipped in the player 140, when the manage- 
ment information decrypting unit 145 has failed to 
decrypt the encrypted management information or 
when the management infomnation utilizing unrt 146 
finds that any of the conditions for the use of the digital 
content is not met. The management informaton prob- 
lem reporting unit 149 will be explained in detail later. 
[0090] The encrypted content receiving unit 150 
receives the encrypted digital content from the memory 

(009lT° The content decrypting unit 151 decryptsthe 
encrypted digital content according to a predetermined 
block cipher which is the inverse of the encryption by the 
content encrypting unit 108 in the recorder 100. In this 
embodiment, after the encrypted digital content is 
divided into 8-byte blocks, each of the encrypted blocks 
is decrypted, and the decrypted blocks are concate- 
nated to fomn the digital content 
[0092] The content utilizing unit 1 52 utilizes the dig- 
ital content {e.g. playback of music) generated by the 
content decrypting unit 1 51 . 

^ 1 pftii'^^ r^nctnirtlnns nf th- A.^h^ntinatinn Units 
inp and 142 



[0093] Fig. 2 shows the detailed constructions of 
the authenticating unit 102 in the recorder 100 and the 
authenticating unit 1 23 in the memory card 1 20. 
[0094] In the figure, the authenticating unit 102 
includes a random number generating unit 110. a data 
converting unit 1 1 1 . a verifying unit 1 1 2. and a venfica- 
tion result receiving unit 113. . 
[009S] Likewise, the authenticating unit 123 
includes a random number generating unit 130. a data 
converting unrt 1 31 . a verifying unit 132. and a venfica- 
tion result sending unit 1 33. 

[0096] The random number generating unit 1 10 in 
the authenticating unit 102 generates random number 
R1 passes It to the data converting unit 1 1 1 . and also 
sends it to the data converting unit 131 in the authenti- 
cating unit 123. ..»,nnin 
[0097] The random number generating unit 130 in 
the authenticating unit 123 generates random number 
R2 passes it to the data converting unit 131, and also 
sends it to the data converting unit 1 1 1 in the authentn 

eating unit 1 02. _ .. 

[0098] The data converting unit 1 1 1 in the authenti- 
cating unit 102 receives random number R1 from the 



random number generating unit HO. perfonns data 
conversion specified by an authentication key of the 
authenticating unit 102 on random number R1 to gener- 
ate verification oata VI. and passes it to the verrtying 
- unit 112. The data converting unit m also receives 
' random number R2 from the random number generat- 
ing unit 1 30 in the authenticating unit 123 unless a time- 
out IS detected, performs the data conversion specified 
bv the authentication key on random number R2 to gen- 
,0 erate verifteatton data V3. and sends it to the verifying 
unit 132 in the authenticating unit 123. 
[0099] The data converting unit 1 31 in the authenti- 
cating unit 123 receives random number R2 from the 
random number generating unit 130. periorms data 
,5 conversion specified by an authentication key ot the 
authenticating unit 123 on random number R2 to gener- 
ate verification data V4. and passes rt to the verifying 
unit 132. The data converting unit 131 also receives 
random number R1 from the random number generat- 
20 ing unit 1 1 0 in the authenticating unit 1 02. performs the 
data conversion specified by the authentication key on 
random number Ri to generate verification data V2, 
and sends it to the verifying unit 1 12 in the authenticat- 
ing unit 1 02. 

25 [0100] Here, if the recorder 100 and the memory 
card 120 are both valid devices, then the authentication 
key and the data conversion in the authenticating unit 
102 are respectively the same as the authentication key 
and the data conversion in the authenticating unit 123. 
30 (01011 The verifying unit 112 in the authenticating 
unit 1 02 receives verification data VI from the data con- 
verting unit 111. The verifying unit 112 also receives 
verification data V2 from the data converting unit 1 31 m 
the authenticating unit 123 unless a timeout is deterted. 
35 The verifying unit 1 12 then compares verfficatton data 
VI and verification data V2 to verify the validity of the 
memory card 120. 

[0102] The verifying unit 132 in the authenticating 
unit 1 23 receives verification data V4 from the data con- 
40 verting unit 1 31 . and receives verification data V3 from 
the data converting unit ill in the authenticating unit 
102 The verifying unit 132 compares verification data 
V4 and verification data V3 to verify the vafidity of the 

recorder 100. . ^„„. 

45 [0103] The verification result sending unit 133 in the 

authenticating unit 123 sends the result of the venfica- 

tion by the verifying unit 132 to the verification result 

receiving unit 1 1 3 in the authenticating unit 1 02. 

[0104] The verification result receiving unit 113 in 

50 the authenticating unit 102 receives the verification 

result from the verification result sending unit 133, 

unless a timeout is detected. 

[0105] Here, if a timeout is detected in any of the 
data converting unit 1 1 1 , the verifying unit 112. and the 
55 verification result receiving unit 1 13 in the authenticat- 
ing unit 102. the authentication problem reporting unit 
103 in the recorder 100 displays a problem report which 
notifies the user of the failure of the memory card 120. 
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and aborts the processing. If the verifying unit 1 12 nas 
failed to verify the memory caro 120 (i.e. verification 
data VI and verification data V2 do not match), the 
authentication problem reporting unit 103 dispiays a 
problem report which notifies the user of the invalidity of 
the memory card 120, and aborts the processing. If the 
verification result received by the verification result 
receiving unit 113 shows that the verifying unit 1 32 has 
failed to verify the recorder 1 00, the authentication prob- 
lem reporting unit 1 03 dispiays a problem report which 
notifies the user of the invalidity of the recorder 1 00. 
[0106] When and only when the verification result 
by the verifying unit 112 and the verification result 
received by the verification result receiving unit 1 13 are 
both successful, the recorder lOO proceeds to the 
recording of management infomnation and digital con- 
tent. 

[0107] Likewise, when and only when the verifica- 
tion result by the verifying unit 132 is successful, the 
memory card 120 proceeds to the recording of manage- 
ment infornnation and digital content 
[0108] Here, since a memory card is in general not 
equipped with a display unit, the verification result pro- 
duced in the memory card 120 is sent to the recorder 
1 00 which is equipped with the display unit 
[0109] Note that the recorder 1 00 and the memory 
card 120 may retain their authentication keys before- 
hand or generate them from the card ID of the memory 
card 120, though this is not the main feature of the 
invention and so its explanation has been omitted here. 
[0110] Fig. 3 shows the detailed constructions of 
the authenticating unit 142 in the player 140 and the 
authenticating unit 123 in the memory card 120. 
[0111] In the figure, the authenticating unit 142 
includes a random number generating unit 160, a data 
converting unit 1 61 , a verifying unit 162, and a verifica- 
tion result receiving unit 1 63. These construction ele- 
ments and their functions are similar to those in the 
authenticating unit 1 02 in Rg. 2. 

[0112] The authenticating unit 123 shown in Fig. 3 
is the same as that shown in Fig. 2. 
[0113] The random number generating unit 160 in 
the authenticating unit 142 has a function analogous to 
the random nunnber generating unit 110 in Fig. 2. The 
random number generating unit 160 generates random 
number R3, passes it to the data converting unit 161. 
and also sends it to the data converting unit 131 in the 
authenticating unit 123. 

[0114] The random number generating unit 130 in 
the authenticating unit 123 generates random number 
R4, passes it to the data converting unit 131. and also 
sends it to the data converting unit 161 in the authenti- 
cating unit 142. 

[01 1 5] The data converting unit 1 61 in the authenti- 
cating unit 142 has a function analogous to the data 
converting unit 1 11 in Fig. 2. The data converting unit 
161 receives random number R3 from the random 
number generating unit 160. perfomis data conversion 



specified by an authentication key of the authenticating 
unit 142 on random number R3 to generate verification 
data V5. and passes it to the verifying unit 1 62. The data 
converting unit 161 also receives random number R4 
5 from the random number generating unit 130 in the 
authenticating unit 123 unless a timeout is detected, 
performs the data conversion specified by the authenti- 
cation key on random number R4 to generate verifica- 
tion data V7, and sends it to the verifying unit 132 in the 
10 authenticating unit 123. 

[0116] The data converting unit 131 in the authenti- 
cating unit 123 receives random number R4 from the 
random number generating unit 130, performs data 
conversion specified by an authentication key of the 
15 authenticating unit 123 on random number R4 to gener- 
ate verification data V8, and passes it to the verifying 
unit 132. The data converting unit 131 also receives 
random number R3 from the random number generat- 
ing unit 1 60 in the authenticating unit 142, performs the 
20 data conversion specified by the authentication key on 
random number R3 to generate verification data V6. 
and sends it to the verifying unit 162 in the authenticat- 
ing unit 1 42. 

[01 1 7] Here, if the player 1 40 and the memory card 
25 120 are both valid devices, then the authentication key 
and the data conversion in the authenticating unit 142 
are respectively identical to the authentication key and 
the data conversion in the authenticating unit 123. 
[0118] The verifying unit 162 in the authenticating 
30 unit 142 has a function analogous to the verifying unit 
1 12 in Rg. 2. The verifying unit 1 62 receives verification 
data V5 from the data converting unit 161. The verifying 
unit 1 62 also receives verification data V6 from the data 
converting unit 131 in the authenticating unit 123 unless 
35 a timeout is detected. The verifying unit 162 then com- 
pares verification data V5 and verification data V6 to 
verify the validity of the memory card 120. 
[0119] The verifying unit 132 in the authenticating 
unit 123 receives verification data V8 from the data con- 
40 verting unit 131 , and receives verification data V7 from 
the data converting unit 161 in the authenticating unit 
142. The verifying unit 132 compares verification data 
V8 and verification data V7 to verify the validity of the 
player 140. 

45 [0120] The verification result sending unit 133 
sends the result of the verification by the verifying unit 
132 to the verification result receiving unit 163 in the 
authenticating unit 1 42. 

[0121] The verification result receiving unit 163 in 
50 the authenticating unit 142 has a function analogous to 
the verification result receiving unit 113 in Fig. 2. The 
verification result receiving unit 163 receives the verifi- 
cation result from the verification result sending unit 
133, unless a timeout is detected. 
55 [0122] The authentication problem reporting unit 
143 in the player 140 operates in the same manner as 
the authentication problem reporting unit 103 in the 
recorder 1 00. 
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[0123] Which is to say, if a timeout is detected in 
any of the data converting unit 161, the verifying unit 
162 and the verification result receiving unit 163 in the 
authenticating unit 142, the authentication problenn 
reporting unit 143 displays a problem report notifying 5 
the user of the failure of the memory card 120, and 
aborts the processing. If the verifying unit 162 has failed 
to verify the memory card 120 {i.e. verification aata V5 
and verification data V6 do not match), the authentica- 
tion orobtem reporting unit 143 displays a problem w 
report notifying the user of the invalidity of the memory 
card 120, and aborts the processing. If the venfication 
result received by the verification result receiving unit 
163 shows that the verifying unit 132 has failed to verify 
the player 1 40, the authentication problem reporting unit 15 
143 displays a problem report notifying the user of the 
invalidity of the player 140. 

[0124] When and only when the verification result 
by the verifying unit 162 and the verification result 
received by the verification result receiving unit 1 63 are 20 
both successful, the player 140 proceeds to the utiliza- 
tion of management information and digital content. 
[0125] Likewise, when and only when the verifica- 
tion result by the verifying unit 132 is successful, the 
memory card 120 proceeds to the utilization of manage- 25 
ment information and digital content. 
[0126] The reason to send the verification result 
from the memory card 1 20 to the player 1 40 is the same 
as that explained in the mutual authentication between 
the recorder 1 00 and the memory card 1 20. 30 
[0127] Note that the player 140 and the memory 
card 120 may retain their authentication keys before- 
hand or generate them from the card ID of the memory 
card 120, though this is not the main feature of the 
invention and so its explanation has been omitted here. 35 

^ R^^rH O peration bv t ha Rpnorder 1 00 and the Mem-, 
nr y card 120 

[0128] The following is an explanation on how the 40 
recorder 100 and the memory card 120 operate to 
record digital content. 

[0129] A typical application is that a computer con- 
nected to the recorder 100 downloads digital content 
such as music data via the Internet and records it onto 45 
the memory card 120 through the recorder 100. 



recorder 100 and the memory card 120 is explained 
below, with reference to Figs. 2 and 4. 



^ 1 Mutua l Authentication 



50 



[0130] Before recording the digital content from the 
recorder 100 onto the memory card 120. mutual 
authentication is perfomned between the recorder 100 
and the memory card 120 to verify each other^s authen- 
ticity. . „ 
[0131] Fig. 4 is a flowchart showing an example 55 
operation of the mutual autiientication between the 
recorder 100 and the memory card 120. 
[0132] This mutual authentication berween the 



(1) The ranoom number generating unit 1 10 in the 
authenticating unit 102 generates random number 
R1 and sends it to the data converting unit 131 in 
the authenticating unit 1 23 (S01 ). 

(2) The data converting unit 1 1 1 in the authenticat- 
ing unit 102 performs the data conversion specified 
by the authentication key on random number R1, 
and thereby generates verification data VI (S02). 

(3) The data converting unit 131 in the authenticat- 
ing unit 123 receives random number R1 (S22). 

(4) The data converting unit 131 performs the data 
conversion specified by the authentication key on 
random number R1, and thereby generates verifi- 
cation data V2 (S23). 

(5) The data converting unit 131 sends verification 
data V2 to the verifying unit 1 12 in the authenticat- 
ing unit 102 (S24). 

(6) The verifying unit 1 12 receives verification data 
\/2 unless a timeout is detected {S03-S05). 

(7) If the timeout is detected in step SOS. the 
authentication problem reporting unit 103 in the 
recorder 100 displays a problem report informing 
the user of the failure of the memory card 120 
{S06), and aborts the processing (ABEND). For 
example, a message such as "Memory Card Fail- 
ure:* No Response to Device Authentication: First 
Receive Time Our is displayed on the LCD 
equipped in the recorder 1 00. 

(8) When the reception of verification data V2 is 
confimied in step S04, the verifying unit 112 com- 
pares verification data VI and verification data V2 
(S07). 

(9) If the verification by the verifying unit 1 12 is not 
successful (i.e. verification data VI and verification 
data V2 do not match) (SOS), the authentication 
problem reporting unit 103 in the recorder 100 dis- 
plays a problem report informing the user of the 
invalidity of the memory card 1 20 (S09), and aborts 
the processing (ABEND). For example, a message 
such as "Memory Card Invalid: Authentication 
Failed" is displayed on the LCD in the recorder 100. 

(10) The random number generating unit 130 in the 
authenticating unit 123 generates random number 
R2 and sends it to the data converting unit 111 in 
the authenticating unit 1 02 (S25). 

(11) If the verification by the verifying unit 112 is 
successful, the data converting unit 1 1 1 receives 
random number R2 unless a timeout is detected 
(S10~S12). 

(12) It the timeout is detected in step SI 2, the 
authentication problem reporting unit 103 in the 
recorder 100 displays a problem report informing 
the user of the failure of the memory card 120 
(813), and aborts the processing (ABEND). For 
example, a message such as "Memory Card Fail- 
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ure: No Response to Device Authentication: Sec- 
ond Receive Tinne Out" is displayed on the LCD in 
the recorder 100. 

(13) When the reception of random number R2 is 
confirmed in step Si 1 , the data converting unit 111 5 
performs the data conversion specified by the 
authentication key on random number R2, and 
thereby generates verification data V3 {81 4). 

(14) The data converting unit 1 1 1 sends verification 
data V3 to the verifying unit i32 in the authenticat- io 
ing unit 123 (Si 5). 

(15) The data converting unit 131 in the authenticat- 
ing unit 1 23 performs the data conversion specified 
by the authentication key on random number R2, 
and thereby generates verification data V4 (S26). is 

(16) The verifying unit 132 in the authenticating unit 
1 23 receives verification data V3 from the data con- 
verting unit 1 1 1 (S27). 

(17) The verifying unit 132 compares verification 
data V4 and verification data V3 (S28). 20 

(18) The verification result sending unit 133 sends 
the result of the verification by the verifying unit 1 32 
to the verification result receiving unit 113 in the 
authenticating unit 102 (S29). 

(19) The verification result receiving unit 113 25 
receives the verification result unless a timeout is 
detected (S16--S18). 

(20) If the timeout is detected in step SI 8, the 
authentication problem reporting unit 103 in the 
recorder 100 displays a problem report informing 30 
the user of the failure of the memory card 120 
(S19), and aborts the processing (ABEND). For 
example, a message such as "Memory Card Fail- 
ure: No Response to Device Authentication: Third 
Receive Time Out" is displayed on the LCD in the 35 
recorder 1 00. 

(21) When the reception of the verification result is 
confirmed in step Si 7, it is judged whether the 
received verification result shows successful verifi- 
cation (S20). 

(22) If the verification result ts not successful, the 
authentication problem reporting unit 103 in the 
recorder 100 displays a problem report informing 
the user of the invalidity of the recorder 100 (821), 
and aborts the processing (ABEND). For example, 45 
a message such as "Recorder Invalid: Authentica- 
tion Failed" is displayed on the LCD in the recorder 
100. 

(23) If the verification result is successful, the 
recorder 100 and the memory card 120 proceed to so 
the recording of management information and dig- 
ital content. 

3.2. Recording of iVjanaaement informati on and Digital 
Content 

[0133] Once the mutual authentication has been 
established between the recorder 100 and the memory 



card 120, the two devices commence the recording of 
management information and digitai content. 
[0134] As described earlier, digitai content such as 
music data is accompanied by management information 
which shows conditions, such as a service type limita- 
tion and a limitation on the number of times the digital 
content can be used, for the use of the digital content. 
With such management information, it is possible to 
limit the use of the digital content to certain types of 
devices, or to limit the number of times the digital con- 
tent can be used free of charge. 

[0135] Fig. 5 is a flowchart showing an example 
operation of recording management information and 
digital content from the recorder 1 00 onto the memory 
card 120. 

[0136] This operation by the recorder 100 and the 
memory card 120 is explained below with reference to 
Figs. 1 and 5. 

(1) The card ID sending unit 122 in the memory 
card 120 sends a card ID "CID" held in the card ID 
holding unit 121, to tiie recorder 100 (S41). Here, 
tiie 8-byte card ID •0123456789ABCDEFH" is sent 

to the recorder 1 00. 

(2) The card ID receiving unit 101 in the recorder 
100 receives the card ID "CID" from the memory 
card 120 (S31). 

(3) The management information acquiring unit 104 
in the recorder 100 acquires management informa- 
tion "Lie" (S32). Here, the 8-byte management 
information "338A800715CA8100H" is acquired. 

(4) The management information encrypting unit 
105 in the recorder 100 encrypts the management 
information "Lie* by a predetermined algorithm "E" 
using the card ID "CID" as an encryption key. As a 
result, encrypted management infomnation 
"E(CmLic)'' is generated (S33). Here, the manage- 
ment information "B38A800715CA8100H" is 
encrypted using the card ID 
"0123456789ABCDEFH" to generate 8-byte 
encrypted management information. 

(5) The encrypted management information send- 
ing unit 106 in the recorder 100 sends the 
encrypted management information ■E(CID,Lic)' to 
rhe memory card 120 (S34). 

(6) The encrypted management information- receiv- 
ing unit 124 in the memory card 120 receives the 
encrypted management information "E(CID,Lic)" 
fi-om the recorder 100 (842). 

(7) The encrypted management infonnation storing 
unit 125 in the memory card 120 stores the 
encrypted management information ''E(CID,Lic)" 
into its inside nonvolatile memory (S43). 

(8) The content acquiring unit 1 07 in the recorder 
100 acquires digital content "Con" (S35). Here, 1- 
Mbyte digital content is acquired. 

(9) The content encrypting unit 108 in the recorder 
100 encrypts the acquired digital content "Con" 
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according to a predetermined block cipher "E". As a 
result, encrypted digital content "E(Con)" is gener- 
ated (S36). Here, afterthe 1 -Mbyte digital content is 
divided into blocks of 8 bytes, each of the blocks is 
encrypted, and the encrypted blocks are concate- 5 
nated to fornn 1 -Mbyte encrypted digital content. 
(10) The encrypted content sending unit 109 in the 
recorder 100 sends the encrypted digital content 
"E(Con)" to the memory card 120 (S37), 
p -, ) The encrypted content receiving unit 1 27 in the w 
memory card 120 receives the encrypted digital 
content •*E(Con)' from the recorder 100 (S44). 
(12) The encrypted content storing unit 128 in the 
memory card 120 stores the encrypted digital con- 
tent "E(Con)" into its inside nonvolatile memory is 
(345). 



d Utilize Qp^ ratinn by the Plaver 140 and the Memory. 
Card 120 



20 



[0137] The following is an explanation on how the 
player 140 and the memory card 120 operate to utilize 

digital content. 

[0138] A typical apolicaiion is the playback of the 
digital content sucn as muse data recorded on the 25 
memory card 120 by the player 140. or the duplication 
(dubbing) of the digital content by the player 140 con- 
nected with another recorder 



d 1 Mutual Authentication 



30 



[0139] Before the player 140 reads digital content 
from the memory card 120 and utilizes it, mutual 
authentication is performed between the player 140 and 
the memory card 1 20 to verify each other's authenticity. 35 
[0140] Fig. 6 is a tiowchart showing an example 
operation of the mutual authentication between the 
player 140 and the memory card 120. This mutual 
authentication is similar to that between the recorder 
1 00 and the memory card 1 20. 

[0141] The mutual authentication between the 
player 140 and the memory card 120 is explained 
below, with reference to Figs. 3 and 6. 

(1) The random number generating unit 160 in the 45 
authenticating unit 142 generates random number 

R3 and sends it to the data converting unit 131 in 
the authenticating unit 1 23 (S51). 

(2) The data converting unit 161 in the authenticat- 
ing unit 142 performs data conversion specified by so 
the authentication key on random number R3, to 
generate verification data V5 (S52). 

(3) The data converting unit 131 in the authenticat- 
ing unit 123 receives random number R3 (S72). 

(4) The data converting unit 131 performs data con- 55 
vereion specified by the authentication key on ran- 
dom number R3, to generate verification data V6 
(S73). 



(5) The data converting unit 131 sends verification 
data V6 to the verifying unit 162 in the authenticat- 
ing unit 142 (S74). 

(6) The verifying unit 162 receives verification data 
V6 unless a timeout is detected (S53~S55). 

(7) If the timeout is detected in step S55, the 
authentication problem reporting unit 143 in the 
player 140 displays a problem report infomning the 
user of the failure of the memory card 120 (S56), • 
and aborts the processing (ABEND). For example, 

a message such as "Memory Card Failure: No 
Response to Device Authentication: First Receive 
Time Ouf is displayed on the LCD equipped in the 
player 140. 

(8) When the reception of verification data V6 is 
contirmed in step S54, the verifying unit 162 com- 
pares verification data V5 and verification data V6 
(S57). 

(9) If the verification by the verifying unit 162 is not 
successful (i.e. verification data V5 and verification 
data V6 do not match) (S58). the authentication 
problem reporting unit 143 in the player 140 dis- 
plays a problem report informing the user of the 
invalidity of the memory card 120 (S59). and aborts 
the processing (ABEND), For example, a message 
such as "Memory Card Invalid: Authentication 
Failed" is displayed on the LCD in the player 140. 

(1 0) The random number generating unit 1 30 in the 
authenticating unit 123 generates random number 
R4 and sends it to the data converting unit 161 in 
the authenticating unit 142 (S75). 

(11) If the verification by the verifying unit 162 is 
successful, the data converting unit 161 receives 
random number R4 unless a timeout is detected 
(S60--S62). 

(12) It the timeout is detected in step S62, tiie 
authentication problem reporting unit 143 in the 
player 140 displays a problem report infonning the 
user of the failure of the memory card 120 (S63), 
and aborts the processing (ABEND). For example, 
a message such as "Memory Card Failure: No 
Response to Device Autiientication: Second 
Receive Time Out* is displayed on the LCD in the 
player 1 40. 

(13) When the reception of random number R4 is 
confirmed in step S61 , the data converting unit 161 
performs the data conversion specified by the 
authentication key on random number R4. to gener- 
ate verification data V7 (S64). 

(14) The data converting unit 161 sends verification 
data V7 to the verifying unit 132 in the authenticat- 
ing unit 123 (S65). 

(15) The data converting unit 1 31 in the authenticat- 
ing unit 123 performs the data conversion specified 
by the authentication key on random number R4, to 
generate verification data V8 (S76). 

(16) The verifying unit 132 in the authenticating unit 
123 receives verification data V7 from the data con- 
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verting unit 161 (S77). 

(17) The verifying unit 132 connpares the verifica- 
tion data V8 and the verification data V7 (378). 

(18) The verification result sending unit 133 in the 
authenticating unit 123 sends the result of the veri- 5 
fication by the verifying unit 132 to the verification 
result receiving unit 163 in the authenticating unit 
142(579). 

(19) The verification result receiving unit 163 
receives the verification result unless a timeout is ?o 
detected (S66-S68). 

(20) If the timeout is detected in step S68, the 
authentication problem reporting unit 143 in the 
player 140 displays a problem report informing the 
user of the failure of the memory card 120 (S69). 15 
and aborts the processing (ABEND). For example. 

a message such as "Memory Card Failure: No 
Response to Device Authentication: Third Receive 
Time Out" is disolayed on the LCD in the player 

140. . 

(21 ) When the reception of the verification result is 
confirmed in step 367. it is judged whether the 
received verification result is successful (S70), 

(22) If the verification result is not successful, the 
authentication problem reporting unit 143 in the 25 
player 140 displays a problem report informing the 
user of the invalidity of the player 140 (571), and 
aborts the processing (ABEND). For example, a 
message such as "Player Invalid: Authentication 
Failed" is displayed on the LCD in the player 140. 30 

(23) If the verification result is successful, the player 
140 and the memory card 120 proceed to the utili- 
zation of management information and digital con- 
tent. 

35 

4 P utilization of Management intor matinn and Digital 
Content 

[0142] Once the mutual authentication has been 
established between the player 140 and the memory 40 
card 120, the two devices commence the utilization of 
management infomnation and digital content. 
[0143] Fig. 7 is a flowchart showing an example 
operation of reading management information and dig- 
ital content from the memory card 120 and utilizing 45 
them in the player 140. 

[0144] This operation by the player 140 and the 
memory card 120 is explained below with reference to 
Figs. 1 and 7. 

^ 50 

(1) The card ID sending unit 122 in the memory 
card 1 20 sends the card ID "CID" held in the card ID 
holding unit 121 , to the player 140 (S81). Here, the 
8-byte card ID "0123456789ABCDEFH- is sent to 
the player 140. 

(2) The card ID receiving unit 141 in the player 140 
receives the card ID "CID" from the memory card 
120 (S91). 



(3) The encrypted management information send- 
ing unit 126 in the memory card 120 sends the 
encrypted management information "E(CID,Lic)" 
stored in the encrypted management information 
stohng unit 125, to the player 140 (S82). 

(4) The encrypted management information receiv- 
ing unit 144 in the player 140 receives the 
encrypted management information "E(ClD,Lic)" 
from the memory card 120 (S92). 

(5) The management information decrypting unit 
145 In the player 140 decrypts the encrypted man- 
agement information "EiCiaLlc)" by a predeter- 
mined algorithm using the card ID "CID" as a 
decryption key. As a result, the management infor- 
mation "Lie" is obtained (S93). Here, the 8-byte 
encrypted management information is decrypted 
with the card ID -0123456789ABCDEFH" into the 
8-byte management infomnation 
"B38A80071 5CA81 OOH" . 

(6) The management information utilizing unit 146 
in the player 140 judges whether the management 
infonnation decrypting unit 145 has succeeded in 
decrypting the encrypted management information 
"E(CID,Lic)" into the management information "Lie" 
(S94). 

(7) If the management information decrypting unit 
145 has succeeded in decrypting the encrypted 
management information, the management infor- 
mation utilizing unit 146 checks what conditions are 
set in the management information for the use of 
the digital content (S95). 

(8) If the management information decrypting unit 
145 has failed to decrypt the encrypted manage- 
ment infomnation, the management information uti- 
lizing unit 146 judges that the management 
information obtained in step S93 is invalid (S96). 
Accordingly, the management information problem 
reporting unit 149 in the player 140 displays a prob- 
lem report informing the user of the invalidity of the 
management infomnation (S97) and aborts the 
processing (ABEND). For example, a message 
such as "Management Information Invalid: Decryp- 
tion Failed" is displayed on the LCD in the player 
140. The failure of the decryption means either the 
management infomnation itself has been falsified or 
the encrypted management infomnation has been 
illegally copied onto the memory card 120 from 
another memory card and so cannot be decrypted 
with the card ID of the memory card 120. 

(9) The management information utilizing unit 146 
judges whether all of the conditions are met (S98). 

(1 0) If all of the conditions are met the manage- 
ment infonnation utilizing unit 146 judges that the 
use of the digital content is permitted, and proceeds 
to the decryption of the encrypted digital content 

(1 1 ) If any of the conditions is not met the manage- 
ment infomnation utilizing unit 146 judges that the 
use of the digital content is prohibited (S99). and 
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the management infomiation problem reporting unit 
149 displays a problem report infomning the user of 
the failure to meet a condition (S100), and aborts 
the orocessing (ABEND). For example, a message 

such as "Condition Not Met: " is diSDiayea on the 5 

LCD in the player 140, The method of checking the 
conditions will be explained in detail later. 

(12) The encrypted content sending unit 129 in the 
memory card 120 sends the encrypted digital con- 
tent -E(Con)" stored in the encrypted content stor- 10 
ing unit 128, to the player 140 (S83). 

(13) The encrypted content receiving unit 1 50 in the 
player 140 receives the encrypted digital content 
"E(Con)" from the memory card 120 (SI 01). 

(14) The content decr/pting unit 151 in the player is 
140 decrypts the encrypted digital content "E(Con)" 
according to a predetenmined block cipher, as a 
result of which the digital content "Con" is obtained 
(3102). Here, after the 1 -Mbyte encrypted digital 
content is divided into 8-byte blocks, each of the 20 
encrypted blocks is decrypted, and the decrypted 
blocks are concatenated to form the 1 -Mbyte digital 
content. 

(15) The content utilizing unit 152 in the player140 
utilizes the digital content "Con' for musical repro- 25 
duction and the like (SI 03). 

^ I ^PthQd Of nh^^k'mq the Conditions 

[01451 The method of checking the conditions for 30 
the use of the digital content is explained here. 
[0146] Fig. 8 shows an example format for digital 
data made up of management information and digital 
content. Here, the management information is set as 
"B38A80071 5CA81 OOH". ^ 
[0147] As illustrated, the management information 
shows information on the service type (the first byte, 
e g "B3H-), the presence or absence of a limit on the 
number of times the digital content can be used (the 
most significant bit of the second byte, e.g. "1"). the 40 
number of times the digital content can be used (the rest 
of the second byte, e.g. "OAH-). the presence or 
absence of a time limit for the use of the digital content 
(the most significant bit of the third byte, e.g. "I"), the 
time iimit (expiry date) (the rest of the third byte to the 45 
fifth byte. e.g. -00071 SH"), the presence or absence of 
a right to duplicate (the most significant bit of the sixth 
byte eg "l"), the presence or absence of a limit on the 
number of times the digital content can be duplicated 
(the second-order bit of the sixth byte. e.g. "I"), the so 
number of times the digital content can be duplicated 
(the rest of the sixth byte, e.g. "OAH"). the presence or 
absence of a limit on areas where the digital content can 
be used (the most significant bit of the seventh byte. e.g. 
"1"). and area infomnation (the rest of the seventh byte ss 
to the eighth byte, e.g. "OIOOH"). 



c; 1 Service Type 

[01 48] When there are a plurality of copyright hold- 
ers of digital data such as music data, with separate 
services such as data formats being defined for these 
copyrighted digital data and players of these digital 
data, a service type is designated in the management 
information to show which service the digital content is 
comoatible with. In this case, the player 140 prestores 
service information showing a service which the device 
is compatible with. The service information is, for exam- 
ple, written in a nonvolatile memory in the player 140 at 
the time of manufacturing. 

[0149] Fig. 9 is a flowchan showing an example 
operation of the player 1 40 in checking the service type. 

(1) The management information utilizing unit 146 
checks whether a service type is designated (8201) 
based on, for instance, a bit showing the presence 
or absence of a service type limitation in the man- 
agement infomiation. In the example in Fig. 8, the 
most significant bit of the first byte showing the 
service type is "r . which means there is a service 
type limitation. If the most significant bit is "0", there 
is no service type limitation. 

(2) When a service type is designated in the man- 
agement information, the management information 
utilizing unit 146 refers to the designated service 
type in the management information, and also 
refers to the service infomnation stored in the non- 
volatile memory in the player 140 (S202). 

(3) The management information utilizing unit 1 46 
checks whether the sen/ice type and the service 
information match (8203). 

(4) If they match, or if there is no sen/ice type limi- 
tation, the management information utilizing unit 
146 judges that the condition on the service type is 
met (8204). 

(5) If they do not match, the management informa- 
tion utilizing unit 1 46 judges that the condition is not 
met and so the use of the digital content is prohib- 
ited (8205). 

(6) If the management information utilizing unit 146 
judges that the condition is not met, the manage- 
ment information problem reporting unit 149 dis- 
plays a problem report notifying the user that the 
player 140 does not provide the service compatible 
with the digital content (S206). For example, a mes- 
sage such as -Condition Not Met: Sen/ice Incom- 
patible" is displayed on the LCD in the player 140. 



R p Number o f Tim^s the Dinital Content Pan Be Used 

[0150] Fig. 10 is a flowchart showing an example 
operation of the player 140 in checking the number of 
times the digital content can be used. 

(1) The management information utilizing unit 146 
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checks whether there is a limit on the number of 
times the digital content can be used {S211) based 
on, for instance, a bit showing the presence or 
absence of such a limit in the management informa- 
tion, in the example in Fig. 8, the most significant bit 5 
of the second byre showing the presence or 
absence of the number of times the digital content 
can be used is "1". which means there is a limit on 
the number of times the digital content can be used. 
If the most significant bit is "O*. there is no such w 
limit. 

(2) if there is a limit on the number of times the dig- 
ital content can be used, the management infomna- 
tion utilizing unit 146 refers to the number in the 
management infomnation (S21 2) . 

(3) The management information utilizing unit 146 
checks whether the number is 0 (S213). 

(4) If the number is not 0, the management informa- 
tion utilizing unit 146 decrements the number by 1 . 
After this, the management information encrypting 20 

. unit 147 encrypts the management information, the 
encrypted management information sending unit 
148 sends the encrypted management information 
to the encrypted management information receiv- 
ing unit 124 in the memorv card 120, and the 25 
enciypted management information storing unit 
125 replaces the encrypted management infomna- 
tion stored therein with the encrypted management 
information receivea by the encrypted management 
information receiving unit 1 2^ (S2i 4). 30 

(5) If the number is not 0 or if there is no limit on the 
number of times the digital content can be used, the 
management information utilizing unit 146 judges 
that the condition on the number of times the digital 
content can be used is met {S21 5). 

(6) If the number is 0. tne management information 
utilizing unit 1 46 judges that the condition is not met 
and the use of the digital content is prohibited 

(5216) . 

(7) If the management information utilizing unit 1 46 40 
judges that the condition is not met, the manage- 
ment information problem reporting unit 149 dis- 
plays a problem report notifying the user that no 
further use of the digital content is pemnitted 

(5217) . For example, a message such as "Condi- 45 
tion Not Met: No Further Use Permitted" is dis- 
played on the LCD in the player 140. 

[01511 Though in this embodiment the infomnation 
on the number of times the digital content can be used so 
is updated in the memory card 120 before the digital 
content is used, the information may be updated after 
the digital content is used. 



the use of the digital content. 



a Time Limit 

[0152] Fig. 1 1 is a flowchart showing an example 
operation of the player 140 in checking the time limit for 



(1) The management information utilizing unit 146 
checks whether there is a time limit for the use of 
the digital content (S221) based on, for instance, a 
bit showing the presence or absence of a time limit 
in the management information. In the example in 
Rg. 8, the most significant bit of the third byte show- 
ing the presence or absence of a time limit is "T, 
which means there is a time limit for the use of the 
digital content. If the most significant bit is "0". there 
is no time limit for the use of the digital content. 

(2) If there is a time limit imposed on the use of the 
digital content, the management information utiliz- 
ing unit 146 refers to the time limit (expiry date) in 
the management information, and also refers to 
current date information shown by a clock equipped 
in the player 140 (S222). 

(3) The management information utilizing unit 146 
checks whether the time limit expired (S223). 

(4) If the time limit has not expired or if there is no 
time limit on the use of the digital content, the man- 
agement information utilizing unit 146 judges that 
the condition on the time limit for the use of the dig- 
ital content is met (S224). 

(5) If the time limit expired, the management infor- 
mation utilizing unit 146 judges that the condition is 
not met and the use of the digital content is prohib- 
ited (S225). 

(6) When the management information utilizing unit 
146 judges that the condition is not met. the man- 
agement infomnation problem reporting unit 149 
displays a problem report notifying the user of the 
expiration of the time limit (S226). For example, a 
message such as "Condition Not Met: Time Limit 
Expired- is displayed on the LCD in the player 140. 

[0153] Here, to prevent unauthorized avoidance of 
this condition, it is necessary to keep the user from 
altering the date infonmation of the clock in the player 
140. As an example, the clock is adjusted at the time of 
manufacturing so that the user cannot alter the date 
thereafter, and only the manufacturer is capable of read- 
justing should the clock go wrong or run down. 

A Duplication 

[0154] Fig, 12 is a flowchart showing an example 
operation of the player 140 in checking the duplication 
status of the digital content (e.g. dubbing of music data). 

■ (1) The management information utilizing unit 146 
checks whether the user indicates the duplication of 
the digital content (3231 ). If the user indicates other 
55 operations such as the reproduction of the digital 
content, the management information utilizing unit 
146 judges that the condition on the duplication is 
met (S237). 
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(2) If the user indicates the duplication, the nnan- 
agement information utilizing unit 146 checks 
whether there is a right to duplicate the digital con- 
tent (S232) based on. for instance, a bit snowing 
the presence or absence of a right to duplicate in 5 
the management information. In the example in Rg. 
8 the most significant bit of the sixth byte snowing 
the presence or absence of a right to duplicate is 
"V, which means there is a right to duplicate the 
digital content, if the most significant bit is there w 
is not right to duplicate. 

(3) If there is a right to duplicate, the management 
information utilizing unit 146 checks whether there 
is a limit on the number of times the digital content 
can be duolicated (S233) based on, for instance, a is 
bit showing the presence or absence of such a iimrt 
in the management infomnation. In the example in 
Fig. 8, the second-order bit of the sixth byte show- 
ing the presence or absence of such a limit is "1". 
which means there is a limit on the number of times 20 
the digital content can be duplicated. If the second- 
order bit is "0-. there is no limit on the number of 
times the digital content can be duplicated. 

(4) If there is a limit on the number of times the dig- 
ital content can be duplicated, the management 25 
information utilizing unit 146 refers to the number in 
the management information {S234). 

(5) The management infomnation utilizing unit 146 
checks whether the number is 0 (3235). 

(6) If the number is not 0. the management infomna- 30 
tion utilizing unit 146 decrements the number by 1. 
Following this, the management infonmation 
encrypting unit 147 encrypts the management 
information, the encrypted management informa- 
tion sending unit 1 48 sends the encrypted manage- 35 
ment information to the encrypted management 
information receiving unit 124 in the memory card 
120 and the encrypted management infomnation 
storing unit 125 replaces the encrypted manage- 
ment information stored therein with the encrypted 40 
management infomnation received by the encrypted 
management infonmation receiving unit 1 24 (S236). 
(7) If the number is not 0, if the user does not indi- 
cate the duplication of the digital content, or if there 
is no limit on the number of times the digital content 4S 
can be duplicated, the management information uti- 
lizing unit 146 judges that the condition is met 
(S237). 

(B) If there is no right to duplicate the digital content, 
the management infomnation utilizing unit 146 50 
judges that the condition is not met and the duplica- 
tion of the digital content is prohibited (S238). 
(9) When the management infomnation utilizing unit 
146 judges that the condition is not met in step 
S238, the management information problem report- 55 
ing unit 149 displays a problem report notifying the 
user that there is no right to duplicate the digital 
content (S239). For example, a message such as 



"Condition Not Met: No Duplication Right" is dis- 
played on the LCD in the player 140. 

(10) if the number is 0, the management infonna- 
tion utilizing unit 1 46 judges that the condition is not 
met and the duplication of the digital content is pro- 
hibited (S240). 

(11) When the management information utilizing 
unit 146 judges that the condition is not met in step 
S240, the management information problem report- 
ing unit 149 displays a problem report notifying the 
user that no further duplication of the digital content 
is pennitted (S241). For example, a message such 
as -Condition Not Met: No Further Duplication Per- 
mitted" is displayed on the LCD in the player 140. 

[0155] Though in tiiis embodiment the information 
on the number of times the digital content can be dupli- 
cated is updated in the memory card 1 20 before the dig- 
ital content is duplicated, the information may be 
updated after the digital content is duplicated. 



^ft Arftff Inff^rmation 

[0156] Fig. 13 is a flowchart showing an example 
operation of the player 140 in checking the limitation on 
areas where the digital content can be used. 

(1) The management information utilizing unit 146 
checks whether there is a limit on areas where the 
digital content can be used (S251) based on. for 
instance, a bit showing the presence or absence of 
an area limitation in the management infonmation. 
in the example of Rg. 8, the most significant bit of 
the seventh byte showing the presence or absence 
of such a limit is M", which means there is an area 
limitation imposed on the use of the digital content, 
if the most significant bit is "Q-. there is no area lim- 
itation on the use of the digital content 

(2) If there is an area limitation, the management 
information utilizing unit 146 refers to the area infor- 
mation in the management infomnation. and also 
refers to device area information, prestored in the 
player 1 40, that shows the country of manufacturing 
of the device and the like (S252). 

(3) The management information utilizing unit 146 
checks whether the area shown in the device area 
information is contained in the areas shown in the 
area information in the management information 
{S253). As an example, if the area information tn 
the management infomnation shows Asia and North 
America and the device area infomnation shows 
Japan, it is judged that the area shown by tiie 
device area infonnation is contained in the area 
infonnation in the management information. 
(4) If the area shown by the device area information 
is contained in the area infomnation in the manage- 
ment information or if there is no area limitation, the 
management information utilizing unit 146 judges 
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that the condition on the araas where the digital 
content can be used is met (S254). 

(5) It the area shown by the device area information 
is not found in the area information in the manage- 
ment information, the management information uti- 
lizing unit 146 judges that the condition is not met 
and the use of the digital content is prohibited 
(S255). 

(6) When the management information utilizing unit 
1 46 judges that the condition is not met, the man- 
agement information problem reporting unit 149 
displays a problem report notifying the user that the 
player 140 does not comply with the area limitation 
of the digital content (S256). For example, a mes- 
sage such as "Condition Not Met: Area Incompati- 
ble" is displayed on the LCD in the player 140. 

[0157] Note that this area limitation can be used in 
combination with the time limit described above. For 
instance, the area limitation may be made invalid upon 
the. expiration of the time limit 

[01581 Note also that the process of updating the 
management information is unnecessary if there are no 
conditions which need to be updated. In such a case, 
the management information encrypting unit 147 and 
the encrypted management information sending unit 
148 can be omitted from the player 140. 



the completion of an ooeration or the occun-ence of a 
problem! and a vibrator controlling unit 213 for control- 
ling the output of the vibrator 21 4. 

5 (1) LCD 207 

[0161] A display device such as the LCD 207 is 
most commonly used to display problem reports. 
[0162] Examples of such displays are given below. 

10 [0163] When authentication has failed, a message 
such as "Authentication Failed" or 'Memory Card 
Authentication Failed" is displayed. When a condition for 
the use of the digital content is not met, a message such 
as "Use Prohibited" is displayed, along with information 

15 concerning the unmet condition. Even when all condi- 
tions are met, information such as the number of times 
the digital content can be used may be notified to the 
user by a message "Use Pemnitted n More Times', 
thereby letting the user know at a glance how many 

20 more times the digital content can be used. In a like 
manner, a message such as "Expiry Date: ( 
Year/Month/Day)" or "Use Penmitted Only In Japan" is 
possible. 

[0164] Here, not only messages but also icons may 
25 be displayed. 



6. Notification Methods 
fi 1 Player 140 

[0159] Fig. 14 shows the hardware construction of 
the player 140. 

[0160] The player 140 is implemented as a music 
player for handling music data, an electronic book 
player for handling document data, or the like. The 
player 140 is equipped with a CPU 201 for controlling 
the entire operation of the player 140, a ROM 202 stor- 
ing a control program, a RAM 203 used to execute the 
control program and process digital content, operation 
buttons 205 used by the user to indicate operations 
such as selection/reproduction of digital content {e.g. 
playback of music), an operation button controlling unit 
204 for controlling the input of the operation buttons 
205, an LCD 207 and an LED (Light Emitting Diode) 208 
for displaying problem reports as well as reports on the 
reproduction of the digital content (e.g. music number, 
title, playback time), a display controlling unit 206 for 
controlling the output of the LCD 207 and the LED 208. 
a memory card controlling unit 209 for sending/receiv- 
ing data to/from the memory card 120, an ejection con- 
trolling unit 210 for automatically ejecting the memory 
card 120. a speaker 212 for outputting sounds, a con- 
tent reproduction controlling unit 21 1 for decrypting the 
encrypted digital content read from the memory card 
120 and outpuiting the digital content (e.g. music data) 
to the speaker 21 2, a vibrator 21 4 for alerting the user of 



(2) LED 208 

[0165] Also, a light emitting device such as the LED 
30 208 may be used to notify the user of a cause of a prob- 
lem. 

[01 66] Here, the player 1 40 may be equipped with a 
plurality of LEDs which correspond to separate types of 
problems. Alternatively if the player 140 is equipped 

35 With one LED that is capable of emitting green light and 
red light, various combinations of colors and lighting 
patterns can be used for different types of problems, 
such as green light indicating a normal state, flashing 
red light indicating an authentication failure, and red 

40 light indicating a failure to meet a condition. 

(3) Speaker 212 

[0167] Also, sounds such as beeps, melodies, or 
45 voices may be used to notify the user of a cause of a 
problem. 

[0168] If the player 1 40 is equipped with a beeper in 
place of the speaker 212, it is possible to alert the user 
of various problems by employing different beeping pat- 
so terns. 

[0169] Also, if the player 140 prestores data of mei- 
■ odies associated with different types of problems, in the 
event of a problem a melody associated with that prob- 
lem can be outputted from the speaker 212. 
55 [01 70] Also, if the player 1 40 prestores data of voice 
messages associated with different types of problems, 
in the event of a problem a voice message associated 
with that problem can be outputted from the speaker 
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212, in addition lo a display of a message of the same 
content on the LCD 207. 

(4) Ejection Controlling Unit 210 

[01711 The olayer 140 may automatically eject the 
memory card 120 by the ejection controlling unit 210, 
When a problem occure. This benefits user friendliness, 
as the user who has a lot of memory cards can quickly 
Check which memory card is applicable to the player 

140. 

[0172] The ejection of the memory card 120 may 
also be used to allow the user to distinguish which prob- 
lem has occurred. For example, the memory card 120 is 
ejected when authentication has failed, whereas the 
memory card 120 is not ejected when authentication 
has succeeded but a condition to use digital content is 
not met Since the failure of the authentication means 
the memory card 120 itself is unusable, ejecting the 
memory card 120 is more convenient for the user who 
wants to try another memory card. On the other hand, 
since the failure to meet the condition means not the 
memory card 120 but the digital content is unusable, not 
ejecting the memory card 120 is more convenient for 
the user who wants to use another digital content 
recorded on the memory card 120. 



(5) Vibrator 214 

[01731 Also, the vibrator 214 may be used to alert 
the user of the occunrence of a problem, if the player 
1 40 is integrated with a mobile phone, the vibrator 21 4 
can provide notification of both an incoming call and a 

problem. . . 

[01741 Since the notifications by the ejection con- 
trolling unit 21 0 and the vibrator 21 4 are both silent, they 
are particularly effective for use inside a tram or m a 
dark place. 

[0175] Various combinations of the above notitica- 
tion means (1)-'(5) are also applicable. 

6.2. Recorder 1 00 

[0176] The recorder 100 can notify a cause of a 
problem to the user in a manner similar to the player 
140 when recording music data which has been down- 
loaded by a personal computer via the Internet, onto the 
memory card 120. 

[0177] Here, if the recorder 100 does not have the 
notification means (1)^(5) like the player 140. the 
recorder 1 00 can pass a problem report to the personal 
computer so that the problem report is displayed on the 
personal computer. 

[0178] Though a memory card equipped with a 
large-capacity semiconductor memory and a control cir- 
cuit has been used as a medium for storing encrypted 
digital content and encrypted management information 
in the above embodiment, any read/write storage 



medium, such as a hard disk, a floppy disk, a DVD-RAM 
(Digital Versatile Disk - Read Only Memory), or a CD-R 
(Compact Disk - Recordable), may instead be used 
together with a control device therefor. Here, if a storage 
5 medium other than the memory card is used, a value 
uniquely given to the storage medium substitutes for the 
card ID 

[0179] Also, computer-readable storage mediums 
storing programs for executing the above embodied 
w operations may be distributed for transactions. 

[0180] The computer-readable storage mediums 
mentioned here may be removable storage mediums 
such as floppy disks, CDs. MOs (Magneto-Optical 
disks), DVDs, and memory cards, or fixed storage medi- 
15 ums such as hard disks and semiconductor memories. 
[0181] Although the present invention has been 
fully described by way of examples with reference to the 
accompanying drawings, it is to be noted that various 
changes and modifications will be apparent to those 
20 skilled in the art. Therefore, unless such changes and 
modifications depart from the scope of the present 
invention, they should be construed as being included 
therein. 

25 Claims 

1. A digital data utilizing device for receiving digital 
data from a digital data intelligent memory device 
and utilizing the digital data, comprising: 
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connecting means for connecting the digital 
data utilizing device with the digital data intelli- 
gent memory device; 

receiving means for receiving the digital data 
from the digital data intelligent memory device 
connected with the digital data utilizing device; 
utilizing means for utilizing the digital data 
received by the receiving means; and 
problem reporting means for reporting to a 
user, when processing from the connection by 
the connecting means to the utilization by the 
utilizing means is aborted at some point and 
the utilization of the digital data becomes 
impossible, a reason why the digital data can- 
not be utilized, based on at which point the 
processing is aborted. 

The digital data utilizing device of Claim 1. further 
comprising 

mutual authenticating means for authenticat- 
ing, before the reception of the digital data by 
the receiving means, the digital data intelligent 
memory device through an exchange of data 
with the digital data intelligent memory device, 
in mutual authentication between the digital 
data utilizing device and the digital data intelli- 
gent memory device, 
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wherein the digital data intelligent mennory 
device sends the digital data when the digital 
data intelligent mennory device has succeeded 
in authenticating the digital data utilizing 
device, and sends authentication failure infor- 5 
mation when the digital data intelligent mennory 
device has failed to authenticate the digital data 
utilizing device, 

wherein the receiving means receives the dig- 
ital data when the mutual authenticating means 70 
has succeeded in authenticating the digital 
data intelligent memory device, and 
wherein the problem reporting means includes: 
authentication failure infonnation receiving 
means for receiving the authentication failure is 
information from the digital data intelligent 
memory device; 

reason determining means for detemnining that 
the digital data cannot be utilized because the 
digital data intelligent memory device is invalid, 20 
when the mutual authenticating means has 
failed to authenticate the digital data intelligent 
memory device, and detemnining that the dig- 
ital data cannot be utilized because the digital 
data utilizing device is invalid, when the 25 
authentication failure information receiving 
means receives the authentication failure infor- 
mation; and 

reason notifying means for notifying the user of 
the reason determined by the reason determin- 30 
ing means. 

3. The digital data utilizing device of Claim 2, 

wherein the problem reporting means further 
includes ^ 

timeout judging means for judging whether 
data which the digital data utilizing device 
should receive from the digital data intelligent 
memory device is received within a predeter- 40 
mined time period, and 

wherein the reason determining means deter- 
mines that the digital data cannot be utilized 
because of a failure of the digital data intelli- 
gent memory device, when the timeout judging 45 
means judges that the data was not received 
within the predetemnined time period. 

4. The digital data utilizing device of Claim 1 , - 

wherein the digital data received by the so 
receiving means includes digital content which is 
subjected to utilization and management informa- 
tion which shows at least one condition to be met 
for utilizing the digital content, the management 
information having been encrypted, 

wherein the utilizing means includes: 

management information decrypting means for 



decrypting the encrypted management infor- 
mation received by the receiving means, to 
obtain the management information; 
decryption judging means for judging whether 
the management information decrypting 
means has succeeded in decrypting the 
encrypted management information; and 
content utilizing means for utilizing the digital 
content received by the receiving means, if the 
decryption Judging means judges that the man- 
agement information decrypting means has 
succeeded in decrypting the encrypted man- 
agement information, and 
wherein the problem reporting means includes: 
reason detemnining means for determining that 
the digital data cannot be utilized because the 
management information has been tampered 
with, when the decryption judging means 
judges that the management infonnation 
decrypting means has failed to decrypt the 
encrypted management information: and 
reason notifying means for notifying the user of 
the reason determined by the reason determin- 
ing means. 

The digital data utilizing device of Claim 4. 

wherein the management information has 
been encrypted in such a manner that the 
encrypted management information can be 
decrypted based on a device ID uniquely given to 
the digital data intelligent memory device, 

wherein the digital data utilizing device fur- 
ther comprises 

device ID acquiring means for acquiring the 
device ID from the digital data intelligent mem- 
ory device connected with the digital data utiliz- 
ing device, 

wherein the management information 
decrypting means decrypts the encrypted 
management infomnation received by the 
receiving means, based on the device ID 
acquired by the device ID acquiring means, 
and 

wherein the reason determining means 
determines that the digital data cannot be uti- 
lized because the management information 
has been tampered with or because the 
encrypted management information has been 
illegally copied into the digital data intelligent 
memory device from another digital data intelli- 
gent memory device, when the decryption 
judging means judges that the management 
information decrypting means has failed to 
decrypt the encrypted management infomna- 
tion. 



6. The digital data utilizing device of Claim 4, 
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Wherein the utilizing means further includes 

condition judging means for judging, when the 
decryption judging means judges that the man- 
agement information decrypting means has 5 
succeeded in decrypting the encrypted man- 
agement information, whether the utilization of 5 
the digital content is permitted or prohibited, by 
checking whether the conditions shown in the 
management infomnation obtained by the man- io 
agement information decrypting means are 
met, 

wherein the content utilizing means utilizes the 
digital content if the condition judging means 
judges that the utilization of the digital content is 
is permitted, and 

wherein the reason detennining means deter- 
mines that the digital data cannot be utilized 
because any of the conditions for utilizing the 
digital content is not met. when the condition 20 
judging means judges that the utilization of the 
digital content is prohibited. 

7. The digital data utilizing device of Claim 6, 

wherein the digital content received by the 25 
receiving means has been coded in a predeter- 
mined data format and is compatible only with a 
predetermined sen/ice, and the conditions shown in 
the management information includes a service 
type limitation specifying the service compatible 30 
with the digital content, 

wherein the utilizing means further includes 

service infomnation holding means for holding 
service information showing at least one serv- 35 
ice which the digital data utilizing device is 
compatible with, 

wherein the condition judging means judges 
that the utilization of the digital content is pro- 
hibited, if the service specified by the service 40 
type limitation does not match any of the serv- 
ices shown by the service information, and 
wherein the reason detennining means deter- 
mines that the digital data cannot be utilized 
because the digital data utilizing device does 45 
not provide the service compatible with the dig- 
ital content, when the condition judging means 
judges that the utilization of the digital content 
is prohibited. 

50 

8. The digital data utilizing device of Claim 6, 

wherein the conditions shown in the man- 
agement information includes a limitation on a 
number of times the digital content can be utilized, 

wherein the condition judging means judges 55 
that the utilization of the digital content is prohibited, 
if the number is smaller than 1 , and 

wherein the reason determining means 



determines :hat the digital data cannot be utilized 
because the number of times the digital content can 
oe utilized is 0, when the condition judging means 
judges that the utilization of the digital content is 
prohibited. 

The digital data utilizing device of Claim 6, 

wherein the conditions shown in the man- 
agement information includes a time limit for utiliz- 
ing the digital content 

wherein the utilizing means further includes 

clocking means for showing cun-ent date and 
time, 

wherein the condition judging means 
judges that the utilization of the digital content 
is prohibited, if the current date and time 
exceed the time limit, and 

wherein the reason determining means 
determines that the digital data cannot be uti- 
lized because of expiration of the time limit, 
when the condition judging means judges that 
the utilization of the digital content is prohibited. 

I. The digital data utilizing device of Claim 6. 

wherein the conditions shown in the man- 
agement infomiation includes duplication informa- 
tion showing whether there is a right to duplicate 
the digital content, 

wherein the utilizing means further includes 

operation type judging means for judging 
whether the user instructs the duplication of the 
digital content, 

wherein the condition judging means judges 
that the duplication of the digital content is pro- 
hibited, if the user instructs the duplication of 
the digital content but the duplication infomia- 
tion shows there is no right to duplicate the dig- 
ital content, and 

wherein the reason determining means deter- 
mines that the digital data cannot be utilized 
because there is no right to duplicate the digital 
content, when the condition judging means 
judges that the duplication of the digital content 
is prohibited. 

II. The digital data utilizing device of Claim 10. 

wherein the conditions shown in the man- 
agement infonnation further includes a limitation on 
a number of times the digital content can be dupli- 
cated. 

wherein the condition judging means judges 
that the duplication of the digital content is prohib- 
ited, if the user instructs the duplication of the digital 
content and the duplication infomnation shows there 
is a right to duplicate the digital content, but if the 
number of times the digital content can be dupli- 
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cated is smaller than 1 , and 

wherein the reason detennining means 
determines that the digital data cannot be utilized 
because the number of times the digital content can 
be duplicated is 0, when the condition judging 
means judges that the duplication of the digital con- 
tent is prohibited. 

12. The digital data utilizing device of Claim 6, 

wherein the conditions shown in the man- 
agement information includes an area limitation 
specifying areas where the digital content can be 
utilized, 

wherein the utilizing means further includes 

device area information holding means for 
holding device area information showing an 
area which relates to the digital data utilizing 
device, 

wherein the condition judging means 
judges that the utilization of the digital content 
is prohibited, if the areas specified by the area 
limitation do not contain the area shown by the 
device area information, and 

wherein the reason determining means 
detemnines that the digital data cannot be uti- 
lized because the digital data utilizing device 
does not comply with the area limitation of the 
digital content, when the condition judging 
means judges that the utilization of the digital 
content is prohibited. 

13. The digital data utilizing device of Claim 6, 

wherein the reason notifying means discon- 
nects the digital data intelligent memory device 
from the digital data utilizing device by automati- 
cally ejecting the digital data intelligent memory 
device from the digital data utilizing device, if the 
decryption judging means judges that the manage- 
ment infomnation decrypting means has failed to 
decrypt the encrypted management information, 
whereas the reason notifying means does not dis- 
connect the digital data intelligent memory device 
from the digital data utilizing device, if the condition 
judging means judges that the utilization of the dig- 
ital content is prohibited. 

14. The digital data utilizing device of Claim 1, 

wherein the problem reporting means 
reports the reason to the user through one of notifi- 
cation means that include a display capable of dis- 
playing characters and symbois. a light-emitting 
device capable of lighting up and flashing, a 
speaker capable of outputting voices and melodies, 
a beeper, a vibrator, and a device capable of initiat- 
ing a mechanical operation that involves the digital 
data intelligent memory device, or through any 
combination of at least two of the notification 



means. 

15. A digital data intelligent memop/ device for sending 
digital data to a digital data utilizing device that uti- 

5 lizes the oigital data, comprising: 

storing means for storing the digital data; 
connecting means for connecting the digital 
data intelligent memory device with the digital 

10 data utilizing device; 

mutual authenticating means for authenticating 
the digital data utilizing device through an 
exchange of data with the digital data utilizing 
device, in mutual authentication between the 

15 digital data intelligent memory device and the 

digital data utilizing device, 
digital data sending means for sending the dig- 
ital data to the digital data utilizing device when 
the mutual authenticating means has suc- 

20 ceeded in authenticating the digital data utiliz- 

ing device, wherein the digital data is received 
by the digital data utilizing device when the dig- 
ital data utilizing device has succeeded in 
authenticating the digital data intelligent mem- 

25 ory device; and 

authentication failure information sending 
means for sending authentication failure infor- 
mation to the digital data utilizing device, when 
the mutual authenticating means has failed to 

30 authenticate the digital data utilizing device. 

16. A digital data intelligent memory device for receiv- 
ing digital data from a digital data recording device 

■ and storing the digital data, comprising: 

35 

connecting means for connecting the digital 
data intelligent memory device with the digital 
data recording device; 

mutual authenticating means for authenticat- 

40 ing, in mutual authentication between the dig- 

ital data intelligent memory device and the 
digital data recording device, the digital data 
recording device through an exchange of data 
With the digital data recording device, wherein 

45 the digital data recording device sends the dig- 

ital data to the digital data intelligent memory 
device when the digital data recording device 
has succeeded in authenticating the digital 
data intelligent memory device; 

50 receiving means for receiving the digital data 

from the digital data recording device, when the 
mutual authenticating means has succeeded in 
authenticating the digital data recording device; 
storing means for storing the digital data 

55 received by the receiving means; and 

authentication failure information sending 
means for sending authentication failure infor- 
mation to the digital data recording device. 
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When the mutual authenticating nneans has 
failed to authenticate the digital data recording 
device. 

17. A digital data recording device for sending digital 5 
data to a digital data intelligent mennory device to 
record the digital data into the digital data intelligent 
memory device, comprising: 

connecting means for connecting the digital io 
data recording device with the digital data intel- 
ligent memory device; 

acquiring means for acquiring the digital data; 
sending means for sending the acquired digital 
data to the digital data intelligent memory i5 
device connected with the digital data record- 
ing device; and 

problem reporting means for reporting to a 
user, when processing from the connection by 
the connecting means to the sending by the 20 
sending means is aborted at some point and 
the sending of the digital data becomes impos- 
sible, a reason why the digital data cannot be 
sent, based on at which point the processing is 
aborted. 

18- The digital data recording device of Claim 17. fur- 
ther comprising 

mutual authenticating means for authenticat- 30 
ing, before the sending of the digital data by the 
sending means, the digital data intelligent 
memory device through an exchange of data 
with the digital data intelligent memory device, 
in mutual authentication between the digital 35 
data recording device and the digital data intel- 
ligent memory device, 

wherein the sending means sends the digital 
data when the mutual authenticating means 
has succeeded in authenticating the digital 40 
data intelligent memory device, 
wherein the digital data intelligent memory 
device receives the digital data when the digital 
data intelligent memory device has succeeded 
in authenticating the digital data recording 45 
device, and sends authentication failure infor- 
mation when the digital data intelligent memory 
device has failed to authenticate the digital data 
recording device, and 

wherein the problem reporting means includes: so 
authentication failure infonnation receiving 
means for receiving the authentication failure 
information from the digital data intelligent 
memory device; 

reason determining means for determining that 55 
the digital data cannot be sent because the dig- 
ital data intelligent memory device is invalid, 
when the mutual authenticating means has 



failed to authenticate the digital data intelligent 
memory device, and determining that the dig- 
ital data cannot be sent because the digital 
data recording device is invalid, when the 
authentication failure information receiving 
means receives the authentication failure infor- 
mation; and 

reason notifying means for notifying the user of 
the reason determined by the reason determin- 
ing means. 

19. The digital data recording device of Claim 17, 

wherein the problem reporting means 
reports the reason to the user through one of notifi- 
cation means that include a display capable of dis- 
playing characters and symbols, a light-emitting 
device capable of lighting up and flashing, a 
speaker capable of outputting voices and melodies, 
a beeper, a vibrator, and a device capable of initiat- 
ing a mechanical operation that involves the digital 
data intelligent memory device, or through any 
combination of at least two of the notification 
means. 

20. A computer-readable storage medium storing a dig- 
ital data utilizing program, used in a digital data uti- 
lizing device, for receiving digital data from a digital 
data intelligent memory device and utilizing the dig- 
ital data, the program comprising: 

a connecting step for connecting the digital 
data utilizing device with the digital data intelli- 
gent memory device; 

a receiving step for receiving the digital data 
from the digital data intelligent memory device; 
a utilizing step for utilizing the digital data 
received in the receiving step; and 
a problem reporting step for reporting to a user, 
when processing from the connection in the 
connecting step to the utilization in the utilizing 
step is aborted at some point and the utilization 
of the digital data becomes impossible, a rea- 
son why the digital data cannot be utilized, 
based on at which point the processing is 
aborted. 

21. A computer-readable storage medium storing a dig- 
ital data recording program, used in a digital data 
recording device, for sending digital data to a digital 
data intelligent memory device to record the digital 
data into the digital data intelligent memory device, 
the program comprising: 

a connecting step for connecting the digital 
data recording device with the digital data intel- 
ligent memory device; 

an acquiring step for acquiring the digital data; 
a sending step for sending the acquired digital 
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when the mutual authenticating means has 
failed to authenticate the digital data recording 
device. 

17 A digital data recording device for sending digital i 
data to a digital data intelligent memory dev.ce to 
riord the drgital data into the digital data .ntell.gent 
memory device, comprising: 

connecting means for connecting the digtel 
data recording device with the digital data mtel- 
ligent memory device; 

acquiring means for acquiring the digital data; 
sending means for sending the acquired a.grtal 
data to the digital data intelligent memory 
device connected with the digital data record- 
ing device; and ^ „ - 
problem reporting means for reporting to a 
user, when processing from the connection by 
the connecting means to the sending by the 
sending means is aborted at some point and 
the sending of the digital data becomes impos- 
sible a reason why the digital data cannot be 
sent, based on at which point the processing is 
aborted. 

18. The digital data recording device of Claim 17. fur- 
ther comprising 
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mutual authenticating means for authenticat- 
ing, before the send^ing of the digital data by the 
sending means, the digital data inte liger. 
memory device through an exchange of data 
with the digital data intelligent memory device 
in mutual authentication between the digital 
data recording device and the digital data mtel- 
ligent memory device. 

Wherein the sending means sends the digital 
data when the mutual authenticating means 
has succeeded in authenticating the digital 
dEOa intelligent memory device, 
wherein the digital data intelligent memoj7 
device receives the digital data when the digrtal 
data intelligent memory dev.ce has succeeded 
in authenticating the digrtal data record ng 
device, and sends authentication failure infor- 
mation when the digital data i"ts"'9e"t 
device has failed to authenticate the digital data 

recording device, and .„^,..rt<.<:- 
wherein the problem reporting means includes, 
authentication failure infomnation receiving 
means for receiving the authenticaton failure 
formation from the digital data intelligent 
memory device; . . 

reason determining means for detemiining that 
the digital data cannot be sent because the dig- 
ital data intelligent memory device is invalid, 
when the mutual authenticating means has 



44 

failed to authenticate the digital data intelligent 
memory device, and determining that the dig- . 
rtal data cannot be sent because the Digital 
data reconling device is invalid, when the 
authentication failure information receiving 
means receives the authentication failure infor- 
mation; and 

reason notifying means for notifying the user of 
the reason determined by the reason determin- 
ing means. 

19 The digital data recording device of Claim 1 7, 

wherein the problem reporting means 
reports the reason to the user through one of notifi- 
oation means that include a display capable ot dis- 
olaying characters and symbols, a light-emitting 
device capable of lighting up and flashing, a 
speaker capable of outputting voices and melodies, 
a beeper, a vibrator, and a devce capable of initiat- 
ing a mechanical operation that involves the digital 
dl intelligent memory device, or througn any 
combination of at least two of the notification 
means. 

20 A computer-readable storage medium storing a dig- 
^ utilizing program, used in a digital data u.- 

Iizing device, for receiving digttal data from a digrtal 
data intelligent memory device and utilizing the dig- 
ital data, the program comprising: 

a connecting step for connecting the digital 
data utilizing device with the digital data intelli- 
gent memory device; 

a receiving step for receiving the digital data 
from the digital data intelligent memory device; 
a utilizing step for utilizing the digital data 
received in the receiving step; and 
a problem reporting step for reporting to a user, 
when processing from the connection m the 
connecting step to the utilization in the utirizing 
step is aborted at some point and the utilization 
of the digital data becomes impossible, a rea- 
son why the digital data cannot be utilized, 
based on at which point the processing is 
aborted. 

21. A computer-readable storage medium storing a cfi^ 
ital dam recording program, used ,n a digrtal da^ 
recording device, for sending digital data to a dig^ 
data intelligent memory device to record the digital 
data into the digital data intelligent memory device, 
the program comprismg: 

a connecting step for connecting the digital 
data recording device with the digital data intel- 
ligent memory device; 

an acquiring step tor acquiring the d»grtal data 
a sending step for sending the acquired digital 
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data to the digital data intelligent memory 
device; and 

a problem reporting step for reporting to a user 
when processing from the connection in the 
connecting step to the sending in the sending 5 
step is aborted at some point and the sending 
of the digital data becomes impossible, a rea- 
son why the digital data cannot be sent, based 
on at which point the processing is aborted. 

10 



15 



20 



25 



30 



35 



40 



45 



50 



55 



3NS00CID- <EP. 



J069564A2J_> 



EP 1 069 564 A2 




1069564A2_L> 



EP 1 069 564 A2 




26 



BNSDOCID; <EP 10e9564A2J_> 



EP 1 069 564 A2 




27 



BNSDOCID: <EP 1069564A2J_> 



EP 1 069 564 A2 



CRECORDEIQ 



,S01 



FIG. 4 



RANDOM NUMBER Rl 
GENERATED AND SENT 
TO MEMORY CARD 



RANDOM NLMBhtl 
Rl RECEIVED | 



,S02 



DAT^ CONVERSION PERFORMED 
ON RANDOM NUMBER Rl 
USING AUTHENTICATION KEY. _ 
TO GENERATE VERIFICATION DATA VI 



S22 
S2T 



VERIFICATION 
DATA V2 REC EIVEDH " 

5i04.' 



503 



..iCEPTlON 
LDNFIRMEDL 



res 



.S05 

ISTIMEOUl 

i)ETECTEDl 

,S06 



DAfACut^vbkbluN 
PERFORMED ON^^ 
RANDOM NUMBER 

AUTHeStlCATION 
KEY, TO GENERATE 
VERIFICATION 
DATA V2 



VERIFICATION 
DATA V2 SENT 
TO RECORDER 



VERIFICATION DATA 
VI AND V2 COMPARED 



t iPRQBLE? 



EMREPQRT DISPLAY t]^ 



. .808 

,£RIFICATpg^^° 
iUCCESSFUL^ 



PROBLEM 
REPORT^ 
DISPLAYE 



( ABEND J 



S24 



.S25 



'SIO 



rRANDOM NUMBER R2 RECEIVbutf i^ 
fRKEP™?"^^ 



RANDOM NUMBER 
R2 GENERATED AND 
SENTTORECORDER 

S26 



1 



DATA CONVERSION PERFORMED 
ON RANDOM NUMBER R2„^ 
USING AUTHENTICATONI^. 
TO GENERATE VERIFICATION 
,DATAV3 



fes S13 

PROBLEM kl^uki I 
DISPLAYED I 



VERIFICATION DATA VSl 
SENT TO MEMORY CARa 



^S15 



r ABEND J 



DATA CONVERSION 
PERFORMED ON 
RANDOM NUMBER 
R2 USING 

AUTHENTICATION 
KEY. TO GENERATE 
VERIFICATION DATA V4 



I 



,S27 



iVERIFICATION RESULT R£ChiVbut <l 
^ONFIRMEDL^-^^^^^TECTE^ 



^IVERIFICATION DATAl 
^|V3 RECEIVED I 
^528 



S19 



IVERIFICATION DATA Ij 
lV3 AND V4 COMPARED! 
1 TS29 



S20> 



es 



RESULT SUCCESSFUII' 



I PROBLEM REPORT pSpLAVEli 

"^^^^ NOI nor-iQl Z\A 



res 



PROBLEM 
REPORT, 
DISPLAYED 



END ) 



S21 



VERIFICATION 
RESULT SENT 
TO RECORDER 



( END ) 



f ABEND ^ 



28 



BNSDOCID: <EP 106956JA2J.> 



EP 1 069 564 A2 



FIG. 5 



( RECORDER^ r MEMORY CAK Uj^^^^ 

I CARD ID REC lMD'i^CA Pn in SF.NT TU RECORDKkI 



I 



MANAGEMENT 
INFORMATION 
ACQUIRED 



.S32 



.S33 



MANAGEMENT 
INFORMATION 
ENCRYPTED 
USING CARD ID 



S34 



ENCRYPTED h4ANAGEMENT 
INFORMATION SENT TO 
MF.MQRY CARD 



I 



S 42 

'm^agemeni- I 



DIGITAL CONTENT 
ACQUIRED 



^S35 

] 

■1.S36 



T 



DIGITAL CONTENT 
ENCRYPTED 



.S43 



ENCRYPTED MANAGEMhN i | 
TNFQFkATION STORED I 



'S37 



T 



344 



ENCRYPTED DIGITAL 
CONTENT SENT TO 
MEMORY CARD 



ENCRYPTED DIGITAL I 
CONTENT RECEIVED j 



.S45 



ENCRYPTED DIGITAL | 
CONTENT STORED | 



c END 



( END ^ 



29 



BNSOOCIO: 'EP 106956iA2J_> 



EP 1 069 564 A2 



FIG. 6 



RANDOM NUMBER 
R3 GENERATED 
AND SENT TO ^ 
MEMORY CARD 



C MEMORY CAKU^ 

RANDOM NUMBERI 
R3 RECEIVED | 



DATA CC^IV-ERSIONVPEK^Vt^^)^!?^^ 
ON RANDOM NUMBER R3 UilNG 



.S52 



AUTHEN 
GENERA' 



■M^cM°DATAV5 



VERIFICATION DATA Vb jpT 
RECEI VED 



S53 



[DATA CONVERSION 
PERFORMED ON^^ 
RANDOM NUMBER 

573 ^ AUTHENTICATION 
KEY. TO GENERATE 
VERIFICATION 
DATA V6 



355 

rrty/jgrNTn""*— ^ No 



1 ijyituu k 
rrtrrvjy) 

Yes 



VERIFICATION 
DATA V6 SENT 
TO PLAYER 



^^*'^^^>i0^^^^S 57 ^^"^r^Ye^ ^S56 

[VERIFICATION DATA I rPROR LEM REPORT Ulbi^LA YHi^ 
V5 AND V6 compared! ' i — 



PROBLEM 
REPORT 
DISPLAYED 




CABEND ^ 



T 



874 



.S75 



fRANDOM NUMBER R4 RECEIVEUjt^ 



S60 



362 



RANDOM 



NUMBER. 



R4 GENERATED AND 
<^F.NT TO PLAYER 




S63 



DATA CONVERSION 
PERFORMED ON RANDOM 
NUMBERR4 USING 
AITTHENTICATION 
KEY TO GENERATE 
VER^nCATIONDATAV? 



PJ^OBLEivTRkPUKil 
DISPLAYED I 



r ABEND i 
.S65 



S77 



S76 

DATA CONVERSION 
PERFORMED ON^.„ 
RANDOM NUMBER 

SWSSfecATION 
KEY. TO GENERATE 
VERIFICATION 
DATAVS 



VERIFICATKDNDATAV^^ 
SENT T O MEMORY CARCf 
^ 



VERIFICATION^ 
DATA V7 RE CEIVED 



[VERIFICATON RESULT RECEIVEDj ^ 



S68 



PROBLEM 

REPORT 

DISPLAYED 



iSPLAVkil 




.S69 I 



VERIFICATION DATA | 
V8 AND V7 CO MPARED I 

VERIFICATION RESULI j 
SENT TO PLAYER j 



r END J 



( ABEND 



30 



SNSOCXJID: <EP 1069564A2J.> 



EP 1 069 564 A2 



FIG. 7 

r MEMORY CARD) 



.S81 



CARD I D SENT TO PLAYER 
i 



C PLAYER ) 
± 



■S91 



CARD m RECEIVED t 



ENCRYPTED MANAGEMENT 
INFORMATION SENT TO 
PLAYER 



382 



ENCRYPTED MANAGtMtM 
INFO RMATION RECEIVED | 



ENCRYPTED MANAGEMENT 
INFORMATION DECRYPTED 
USING a\RDD 



.S92 



.S93 



t^MANAGEMEI.- 
FORMATION VALID? 



,396 



395 



CONDITIONS 
CHECKED 



MANAGEMENT 
INFORMATION 
IS INVALID 




PROBLEM REPORT 
DISPLAYED 



,383 



ENCRYPTED DIGITAL 
CONTENT SENT TO 
PLAYER 



Yes 



SlOO 



USE OF DIGITAL 
CONTENT 
IS PROHIBITED 
T 



PROBLEM REPORT! 
DISPLAYED I 



,3101 



ENCRYPTED DIGITAL 
CONTENT RECEIVED 



C ABEND 



397 

1 



ENCRYPTED DlCm, 
CONTENT DECRYPTEDl 



C END ^ 



DIGITAL CONTENT 
UT ILIZED 

7 

C END ) 



31 



SNSDbClO; <EP 106S5&4A2.L> 



EP 1 069 564 A2 




32 

BNSDOCID: <EP 1069564A2 J_> 



EP 1 069 564 A2 



FIG. 9 



( PLAYER ^ 




SERVICE TYPE AND SERVICE 
INFORMATION READ 



.S203 



^ DO SERVICE 
TYPE AND SERVICE 
INFORMATION 
MATCH? 



No 



es 



,S204 



CONDITION MET 



^8205 
CONDITION NOT MET | 



__J_^ T ^S206 

C END ^ I PROBLEM REPORT DISPLAYEE|| 

C ABEND J 



1069564A2J_> 



33 



EP 1 069 564 A2 



FIG. 10 

C PLAYER J 



^ IS THERE ^ ^ 
No^^IMIT ON NUMBER 
OF TIMES DIGITAL 
.CONTENT C/"' 

iE usm" 

CYes 



,3211 



.8212 



NUMBER OF TIMES glGITM- 1 
CONTENT CAN B E USED READ] 




NUMBER 
DECREMENTED BY 1. 
AND ENCRYPTED ^^^^ 
MANAGEMENT INFORMATJON 
IN MEMORY CARD UPDATED 




,3216 



CONDITION 
NOT MET 



-3217 



PROBLEM REPORT 
DISPLAYED 



1 



C ABEND ^ 



34 



SNSbbCJD <EO 1069S64A2J_> 



EP 1 069 564 A2 



FIG. 11 



No 



C PLAYER^ 



fs THE] 
"TIME LIMIT FOR^ 
USE OF DIGITAL 
XONTENTL 

/Yes 



.S221 



TIME LIMIT AND 
CURRENT DATE READ 



.S222 




Yes 



S224 



.S225 



CONDITION 
MET 



I 



CONDITION 
NOT MET 



C END ^ 



I 



.S226 



PROBLEM REPORT I 
DISPLAYED I 



r ABEND ^ 



3NS0OCID: <EP 1069S64A2J_> 



35 



EP 1 069 564 A2 



No 



C PLAYER ^ 

JOES 
USER INDICATE 
DUPLICATION! 



FIG. 12 



S231 



■ S232 



Is THERE 
RIGHT TO 
DUPLICATE? 



.8233 



^ IS THERE ^ 
XIMIT ON NUMBERS 
OF TIMES DIGITAL 
CONTENT CAN BE 
DUPLICATED^g 

Yes 



S238 



CONDITION 
NOT MET 



] 



S239 



PROBLEM REPORT 
DISPLAYED 



1 



5234 



NUMBER OF TIMES DIGITAL CONTENT 
CAN BE DUPLICATED READ 



] 




Yes 



S236 



NUMBER DECREMENTED BY 1.^^ 
AND ENCRYPTED MANAGEMENT 
INFORMATION UPDATED IN 
MEMORY CARD 



.3240 



CONDITION 
MET 



c END :> 



_ S237 

r 



CONDITION 
NOT MET 



1 



] 



.3241 



PROBLEM REPORT 
DISPLAYED 



( ABEND ^ 



36 



BNSDOCID- <EP 1059S64A2J_> 



EP 1 069 564 A2 



FIG. 13 



C PLAYER ^ 



, IS THERE 
No ^^IMIT ON AREAS 
^ WHERE DIGITAL 
CONTENT CAN 
IE USE^i- 

'es 



■ S251 



S252 



AREA INFORMATION IN ^ 
MANAGEMENT INFORMATION 
AND DEVICE AREA ^ 
INFORMATION READ 



^ 'S253 

IS AREA 
'shown by DEVICE^ 

, area information ^ ^ 
Included in areas shown by^ 

area INFORMATION IN ^ 

management 
jnformation? 



No 



es 



C END ^ 



S254 



.8255 



CONDITION 
NOT MET 



1 



.S256 



PROBLEM REPORT 
DISPLAYED 



C ABEND J 



37 



1069S64A2J_> 



(19) 



J) 



Europaisches Patentamt 
European Patent Office 
Office europeen des brevets 




(11) 



(12) 



(88) Date of publication A3: 

21.08.2002 Bulletin 2002/34 

(43) Date of publication A2: 

17.01 .2001 Bulletin 2001/03 

(21) Application number: 00305795.7 

(22) Date of filing: 10.07,2000 



EP 1 069 564 A3 

EUROPEAN PATENT APPLICATION 

(51) Intel.': G11B 20/00 



(84) Designated Contracting States: 

AT BE CH CY DE DK ES Fi PR GB GR IE IT LI LU 
MC NL PT SE 

Designated Extension Stales: 
AL LT LV MK RO SI 

(30) Priority: 15.07.1999 JP 20121399 

(71 ) Applicant: MATSUSHITA ELECTRIC INDUSTRIAL 
CO., LTD. 

Kadoma-shi. Osaka 571 (JP) 



(72) Inventors: 

• Kumazaki, Yoji 

Kasugai-shI, Aichi-ken 480-0304 (JP) 

• Ono, Takatoshi 

Jimokuji-cho, Ama-gun Aichi*ken 490-1111 (JP) 

(74) Representative: Butcher, Ian James et al 
A. A. Thornton & Co. 
235 High Holborn 
London WC1V7LE (GB) 



(54) Digital data recording device, digital data memory device, and digital data utilizing device 
that produce problem reports 



(57) A digital data uiili/ing device connects with a 
digital data intelligent memory device, receives digital 
data from the digital data intelligent memory device, and 
utilizes the received digital data. When the processing 
from the connection with the digital data intelligent mem- 



ory device to the utilization of the digital data is aborted 
at some point and the utilization of the digital data be- 
comes impossible, the digital data utilizing device pro- 
duces a problem report notifying the user of a reason 
why the digital data cannot be utilized, based on at which 
point the processing is aborted. 



FIG. 1 



CO 
< 

CD 

in 

a> 
io 
o 



INFORMATION^' 



DIGITAL . 
CONTENT 




CL 
ILI 



Pnmcd by Jouvc, 7S001 PARIS (FR) 



BNSDOCID- <EP. 



1069564A3J_> 



EP 1 069 564 A3 



European Patent 
Office 



EUROPEAN SEARCH REPORT 



AppUcation Number 

EP 00 3Q 5795 



DOCUMENTS CONSIDERED TO BE RELEVANT 



Category 



Citation of document with tndicatjon. 
o: relevant passages 



where appropnate. 



EP 0 951 018 A (FUJITSU LTD) 
20 October 1999 (1999-10-20) 
column 2» line 41 - column 3, line 36 * 
column 4» line 43 - column 5» line 13 * 

* coluiim 28» line 35 - line 47 * 

* claims 1,12,16 * 

US 5 599 231 A (HIBIMO TOSHIRO £T AL) 
4 February 1997 (1997-02-04) 



abstract; figures 3A,8-11 * 

coluiwi 3, line 37 - column 4, line 16 * 

column 9, line 37 - column 4, line 16 ^ 

column 9, line 35 - column 10. line 19 



Relevant 
to claim 



':i,i4,i7. 

19,20 



1.4, 

,15-18. 
! 20,21 
2.18 



colum 17, line 50 - column 28, line 41 
* claims 1,10.11 * 

YAMANAKA K ET AL: "TRENDS IN DIGITAL COPY 

PROTECTION TECHNOLOGIES" 

NTT REVIEW, TELECOMMUNICATIONS 

ASSOCIATION, TOKYO, OP, 

vol. 11, no. 1, January 1999 (1999-61), 

pages 108-115, XP0O08O4413 



CLASSIFICATION OFTHB 
APPUCATION (lllLCt.7) 



511820/06 



TECHNICAL RELDS 
SEARCHED (tm.CI.7) 



GllB 
G06F 
607F 



The present search report has been drawn up for ail claims 



Place oi search 


Date ot cofnpteiion ot 3i» saarcn 




THE HAGUE 


1 3 July 2002 


Schiwy-Rausch» G 



CATEGORY OF CITED DOCUMENTS 

X : oarticularty retevant it taken aione 

Y : parecidarty relevant it comDined wim anotner 

document ot the same caiegor/ 
A : tecnnolagical background 
O : non-writtBn (fiscosuie 
P : inlBrmediate document 



T : theory orpnnci{»e unoertyirg the invention 
E : oartier Datsnl document, but put>lisned on. or 

attertnefiirng date 
o : aoctjmant cued in tne appUcanon 
L : document cited for other reasons 



& : member of ttie same patent family, corresponding 
ctocumeni 



BNSOOCID: <EP 1069S6AA3J_> 



EP 1 069 564 A3 



ANNEX TO THE EUROPEAN SEARCH REPORT 
ON EUROPEAN PATENT APPLICATION NO. 



EP GO 3Q 5795 



This arnex Ksts the patent famhy menfcers rdaiing to the oatent documents cited in the above-mentioned European search repon. 

The memoeis are as contained in the European Patent Office EDP file on . . ^ , -i 

The Eurooew Patent Olfice is in no way liaSe for these particiiiats which are merely given lor the ourpose of intormation. 

03-07-2802 



Patent documeiM 
cited in search reoort 



Publication 
date 



Patent family 
m8mber(s) 



EP 0951618 



20-10-1999 



JP 
EP 
US 



11306093 A 
0951018 Al 
6286087 Bl 



US 5599231 



04-02-1997 JP 



8286965 A 



Publication 



05-11-1999 
20-10-1999 
04-09-2001 



01-11-1996 



§ For mote details about this annex : see Official Journal of the Etiropean Patent Office, No. 1 a82 



3NSIXX;iO: <EP 10695a4A3J_> 



